Tech Problem Aggregator

Fake Microsoft Tech had remote control of computer today

Q: Fake Microsoft Tech had remote control of computer today

My dad gave remote control to a fake MS tech today for about an hour until I hit the power off button. I am a novice computer user.   I ran Malwarebytes & it said there are PUPs.I took no action but kept the MBam log as follows
Malwarebytes Anti-Malwarewww.malwarebytes.org
Scan Date: 7/21/2016
Scan Time: 5:42 PM
Logfile: mbam.txt
Administrator: Yes
Version: 2.2.1.1043
Malware Database: v2016.07.21.07
Rootkit Database: v2016.05.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 10
CPU: x64
File System: NTFS
User: Tino
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 303974
Time Elapsed: 16 min, 55 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 2
PUP.Optional.HomePageHelper, HKU\S-1-5-21-2777425413-3077147864-879318077-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{88EFA772-006F-11E5-8270-F8A963F40B15}, , [4a612402a8f21e185a47fda845be946c],
PUP.Optional.Trovi, HKU\S-1-5-21-2777425413-3077147864-879318077-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{AA5B1B25-91CE-11E4-8266-F8A963F40B15}, , [b0fbb76f3b5f60d6d3b58138659e639d],
Registry Values: 7
PUP.Optional.HomePageHelper, HKU\S-1-5-21-2777425413-3077147864-879318077-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{88EFA772-006F-11E5-8270-F8A963F40B15}|FaviconURL, http://homepage-web.com/favicon.ico, , [4a612402a8f21e185a47fda845be946c]
PUP.Optional.HomePageHelper, HKU\S-1-5-21-2777425413-3077147864-879318077-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{88EFA772-006F-11E5-8270-F8A963F40B15}|FaviconURLFallback, http://homepage-web.com/favicon.ico, , [1a91d74fb2e82e08960b168f2cd73bc5]
PUP.Optional.HomePageHelper, HKU\S-1-5-21-2777425413-3077147864-879318077-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{88EFA772-006F-11E5-8270-F8A963F40B15}|TopResultURL, http://search.homepage-web.com/?src=omnibox&partner=toshibaupd&q={searchTerms}, , [5358d0567d1d00369f02e3c2a85b9f61]
PUP.Optional.HomePageHelper, HKU\S-1-5-21-2777425413-3077147864-879318077-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{88EFA772-006F-11E5-8270-F8A963F40B15}|URL, http://search.homepage-web.com/?src=omnibox&partner=toshibaupd&q={searchTerms}, , [e1ca38ee7129a88e752c75305ba86b95]
PUP.Optional.Trovi, HKU\S-1-5-21-2777425413-3077147864-879318077-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{AA5B1B25-91CE-11E4-8266-F8A963F40B15}|SuggestionsURL, http://Trovi.com/Results.aspx?ctid=CT3333048&searchsource=56&UM=6&q={searchTerms}, , [b0fbb76f3b5f60d6d3b58138659e639d]
PUP.Optional.Trovi, HKU\S-1-5-21-2777425413-3077147864-879318077-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{AA5B1B25-91CE-11E4-8266-F8A963F40B15}|TopResultURL, http://Trovi.com/Results.aspx?ctid=CT3333048&searchsource=56&UM=6&q={searchTerms}, , [1695c95d13873ef89eea6851e91a58a8]
PUP.Optional.Trovi, HKU\S-1-5-21-2777425413-3077147864-879318077-1001\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{AA5B1B25-91CE-11E4-8266-F8A963F40B15}|URL, http://Trovi.com/Results.aspx?ctid=CT3333048&searchsource=56&UM=6&q={searchTerms}, , [169520060b8f4fe791f7bcfdba49e917]


Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)

(end)
 
FRST log:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-07-2016
Ran by Tino (administrator) on RAYSCOOLSTUFF (21-07-2016 19:11:51)
Running from C:\Users\Tino\Desktop
Loaded Profiles: Tino (Available Profiles: Tino)
Platform: Windows 10 Home Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel® Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel® Corporation) C:\Program Files\Intel Corporation\Intel® Technology Access\IntelTechnologyAccessService.exe
(Intel® Corporation) C:\Program Files\Intel Corporation\Intel® Technology Access\LegacyCsLoaderService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\22.7.0.76\n360.exe
(Toshiba Corporation) C:\Program Files\TOSHIBA\Teco\TecoService.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
(Intuit Inc.) C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Security Suite\Engine\22.7.0.76\n360.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Teco\TecoResident.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(SEIKO EPSON CORPORATION) C:\Windows\System32\spool\drivers\x64\3\E_YATIIUE.EXE
(TOSHIBA CORPORATION) C:\Program Files (x86)\Toshiba\Utilities\KeNotify.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe
(LogMeIn, Inc.) C:\Users\Tino\AppData\Local\LogMeIn Rescue Applet\LMIR0001.tmp\lmi_rescue.exe
(LogMeIn, Inc.) C:\Users\Tino\AppData\Local\LogMeIn Rescue Applet\LMIR0002.tmp\lmi_rescue.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\HelpPane.exe

==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [402344 2016-01-07] ()
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\Hotkey\TCrdMain_Win8.exe [2556768 2013-10-08] (TOSHIBA Corporation)
HKLM\...\Run: [TecoResident] => C:\Program Files\TOSHIBA\Teco\TecoResident.exe [180016 2015-06-08] (TOSHIBA Corporation)
HKLM\...\Run: [TSSSrv] => C:\Program Files (x86)\TOSHIBA\System Setting\TSSSrv.exe [296008 2013-10-21] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3946184 2015-09-23] (Synaptics Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-06-01] (Apple Inc.)
HKLM-x32\...\Run: [KeNotify] => C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34160 2013-08-05] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [TSVU] => c:\Program Files\TOSHIBA\TOSHIBA Smart View Utility\TosSmartViewLauncher.exe [516976 2015-06-09] (TOSHIBA)
HKU\S-1-5-21-2777425413-3077147864-879318077-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIIUE.EXE [283232 2012-02-28] (SEIKO EPSON CORPORATION)
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security Suite\Engine64\22.7.0.76\buShell.dll [2016-06-09] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security Suite\Engine64\22.7.0.76\buShell.dll [2016-06-09] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security Suite\Engine64\22.7.0.76\buShell.dll [2016-06-09] (Symantec Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 75.75.75.75 75.75.76.76
Tcpip\..\Interfaces\{1a252b14-3a90-40c1-8542-5647c8cd764e}: [DhcpNameServer] 75.75.75.75 75.75.76.76
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://toshiba13.msn.com/?pc=TNJB
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TNJB
HKU\S-1-5-21-2777425413-3077147864-879318077-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://my.xfinity.com/?cid=customer
HKU\S-1-5-21-2777425413-3077147864-879318077-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TNJB
HKU\S-1-5-21-2777425413-3077147864-879318077-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://mystart.toshiba.com
SearchScopes: HKU\S-1-5-21-2777425413-3077147864-879318077-1001 -> DefaultScope {88EFA772-006F-11E5-8270-F8A963F40B15} URL = hxxp://search.homepage-web.com/?src=omnibox&partner=toshibaupd&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2777425413-3077147864-879318077-1001 -> {33D747C7-CCA0-424C-97C7-F5B904F07CD0} URL =
SearchScopes: HKU\S-1-5-21-2777425413-3077147864-879318077-1001 -> {88EFA772-006F-11E5-8270-F8A963F40B15} URL = hxxp://search.homepage-web.com/?src=omnibox&partner=toshibaupd&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2777425413-3077147864-879318077-1001 -> {AA5B1B25-91CE-11E4-8266-F8A963F40B15} URL = hxxp://Trovi.com/Results.aspx?ctid=CT3333048&searchsource=56&UM=6&q={searchTerms}
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security Suite\Engine64\22.7.0.76\coIEPlg.dll [2016-05-31] (Symantec Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Security Suite\Engine\22.7.0.76\coIEPlg.dll [2016-05-31] (Symantec Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine64\22.7.0.76\coIEPlg.dll [2016-05-31] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Security Suite\Engine\22.7.0.76\coIEPlg.dll [2016-05-31] (Symantec Corporation)
FireFox:
========
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2014-11-05] (RocketLife, LLP)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-04-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2777425413-3077147864-879318077-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Tino\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-11-18] (RocketLife, LLP)
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon
FF Extension: Norton Identity Safe - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon [2016-07-11]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_22.5.2.15\coFFAddon
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security Suite\Engine\22.7.0.76\Exts\Chrome.crx [2016-06-23]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Security Suite\Engine\22.7.0.76\Exts\Chrome.crx [2016-06-23]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
R2 igfxCUIService2.0.0.0; C:\Windows\system32\igfxCUIService.exe [373160 2016-01-07] (Intel Corporation)
R2 Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel® Corporation) [File not signed]
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel® Corporation)
R2 Intel® ME Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-10] (Intel Corporation)
S3 Intel® TA SAM; C:\Program Files (x86)\Intel Corporation\Intel® Technology Access\Intel® Software Asset Manager\bin\IntelSoftwareAssetManagerService.exe [18064 2015-04-18] ()
R2 Intel® Technology Access Legacy CS Loader; C:\Program Files\Intel Corporation\Intel® Technology Access\LegacyCsLoaderService.exe [144128 2015-07-31] (Intel® Corporation)
R2 Intel® TechnologyAccessService; C:\Program Files\Intel Corporation\Intel® Technology Access\IntelTechnologyAccessService.exe [481536 2015-07-31] (Intel® Corporation)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel® Update Manager\bin\iumsvc.exe [178312 2015-09-25] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 N360; C:\Program Files (x86)\Norton Security Suite\Engine\22.7.0.76\N360.exe [289080 2016-06-17] (Symantec Corporation)
S2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-09-23] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 athr; C:\Windows\System32\drivers\athw10x.sys [4342936 2015-12-09] (Qualcomm Atheros Communications, Inc.)
R1 BHDrvx64; C:\Program Files (x86)\Norton Security Suite\NortonData\22.5.2.15\Definitions\BASHDefs\20160718.001\BHDrvx64.sys [1832176 2016-05-12] (Symantec Corporation)
R1 ccSet_N360; C:\Windows\system32\drivers\N360x64\1607000.04C\ccSetx64.sys [174328 2016-06-01] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497392 2016-05-05] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156912 2016-05-05] (Symantec Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Security Suite\NortonData\22.5.2.15\Definitions\IPSDefs\20160720.001\IDSvia64.sys [876760 2016-07-11] (Symantec Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [192216 2016-07-21] (Malwarebytes)
R3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
R1 ndisrd; C:\Windows\system32\DRIVERS\ndisrfl.sys [50448 2015-07-28] (Intel Corporation)
S3 NetTap630; C:\Windows\system32\DRIVERS\nettap630.sys [76560 2015-07-29] (Intel Corporation)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [310528 2015-06-09] (Realtek Semiconductor Corp.)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-09-23] (Synaptics Incorporated)
R3 SRTSP; C:\Windows\System32\Drivers\N360x64\1607000.04C\SRTSP64.SYS [773360 2016-07-01] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\N360x64\1607000.04C\SRTSPX64.SYS [48888 2016-06-01] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\N360x64\1607000.04C\SYMEFASI64.SYS [1627352 2016-06-01] (Symantec Corporation)
S0 SymELAM; C:\Windows\System32\drivers\N360x64\1607000.04C\SymELAM.sys [24192 2015-07-10] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS [101112 2016-06-23] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\N360x64\1607000.04C\Ironx64.SYS [291056 2016-06-01] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\N360x64\1607000.04C\SYMNETS.SYS [567536 2016-06-01] (Symantec Corporation)
R3 Thotkey; C:\Windows\System32\drivers\Thotkey.sys [54424 2015-07-29] (Toshiba Corporation)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 NAVENG; \??\C:\Program Files (x86)\Norton Security Suite\NortonData\22.5.2.15\Definitions\SDSDefs\20160711.001\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Security Suite\NortonData\22.5.2.15\Definitions\SDSDefs\20160711.001\EX64.SYS [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-07-21 19:11 - 2016-07-21 19:12 - 00017390 _____ C:\Users\Tino\Desktop\FRST.txt
2016-07-21 19:11 - 2016-07-21 19:11 - 00000000 ____D C:\FRST
2016-07-21 19:09 - 2016-07-21 19:11 - 02393600 _____ (Farbar) C:\Users\Tino\Desktop\FRST64.exe
2016-07-21 18:01 - 2016-07-21 18:01 - 00003368 _____ C:\Users\Tino\Desktop\mbam.txt
2016-07-21 17:42 - 2016-07-21 18:58 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-07-21 17:41 - 2016-07-21 18:02 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-07-21 17:41 - 2016-07-21 17:41 - 00001182 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-07-21 17:41 - 2016-07-21 17:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-07-21 17:41 - 2016-07-21 17:41 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-07-21 17:41 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-07-21 17:41 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-07-21 17:41 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-07-21 11:14 - 2016-07-21 11:14 - 01827368 _____ (LogMeIn, Inc.) C:\Users\Tino\Downloads\Support-LogMeInRescue (1).exe
2016-07-21 11:14 - 2016-07-21 11:14 - 00002342 _____ C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Premium Technical Support (2).lnk
2016-07-21 11:06 - 2016-07-21 11:10 - 00000000 ____D C:\Program Files (x86)\LogMeIn Rescue RC - 6f9a499b-da16-48bc-9688-29afde9c0ac2
2016-07-21 11:06 - 2016-07-21 11:06 - 00000248 _____ C:\rescue.info
2016-07-21 11:04 - 2016-07-21 11:14 - 00000000 ____D C:\Users\Tino\AppData\Local\LogMeIn Rescue Applet
2016-07-21 11:04 - 2016-07-21 11:04 - 00002342 _____ C:\Users\Tino\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Premium Technical Support.lnk
2016-07-21 11:03 - 2016-07-21 11:03 - 01827368 _____ (LogMeIn, Inc.) C:\Users\Tino\Downloads\Support-LogMeInRescue.exe
2016-07-19 10:45 - 2016-07-19 10:45 - 00001014 _____ C:\Users\Public\Desktop\EPSON Scan.lnk
2016-07-19 10:45 - 2016-07-19 10:45 - 00000000 ____D C:\Program Files (x86)\epson
2016-07-19 10:45 - 2012-07-24 00:00 - 00466432 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\esxw2ud.dll
2016-07-19 10:45 - 2011-12-12 00:00 - 00135824 _____ (Seiko Epson Corporation) C:\WINDOWS\system32\escsvc64.exe
2016-07-19 10:43 - 2016-07-19 10:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON
2016-07-19 10:25 - 2016-07-19 10:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EPSON Software
2016-07-19 10:25 - 2016-07-19 10:25 - 00000000 ____D C:\Program Files (x86)\EPSON Software
2016-07-19 10:13 - 2016-07-19 10:13 - 00000000 ____D C:\Program Files\Common Files\EPSON
2016-07-19 10:12 - 2016-07-19 10:27 - 00000000 ____D C:\ProgramData\EPSON
2016-07-19 10:00 - 2015-01-06 08:19 - 00120320 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_YLMIUE.DLL
2016-07-19 10:00 - 2015-01-06 08:19 - 00083968 _____ (SEIKO EPSON CORPORATION) C:\WINDOWS\system32\E_YD4BIUE.DLL
2016-07-19 10:00 - 2015-01-06 08:19 - 00010752 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\E_GCINST.DLL
2016-07-19 09:30 - 2016-07-01 00:49 - 07469408 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-07-19 09:30 - 2016-07-01 00:34 - 01322248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-07-19 09:30 - 2016-07-01 00:25 - 02773096 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-07-19 09:30 - 2016-07-01 00:25 - 01987936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-07-19 09:30 - 2016-07-01 00:25 - 00648256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxgi.dll
2016-07-19 09:30 - 2016-06-30 23:56 - 22379520 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-07-19 09:30 - 2016-06-30 23:47 - 24610304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-07-19 09:30 - 2016-06-30 23:47 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-07-19 09:30 - 2016-06-30 23:41 - 00605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-07-19 09:30 - 2016-06-30 23:41 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosHostClient.dll
2016-07-19 09:30 - 2016-06-30 23:39 - 13018112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-07-19 09:30 - 2016-06-30 23:37 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-07-19 09:30 - 2016-06-30 23:36 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-07-19 09:30 - 2016-06-30 23:32 - 02582016 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-07-19 09:30 - 2016-06-30 23:31 - 19347968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-07-19 09:30 - 2016-06-30 23:30 - 13385728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-07-19 09:30 - 2016-06-30 23:29 - 05503488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d2d1.dll
2016-07-19 09:30 - 2016-06-30 23:29 - 03589632 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-07-19 09:30 - 2016-06-30 23:29 - 00349696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-07-19 09:30 - 2016-06-30 23:26 - 18674176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-07-19 09:30 - 2016-06-30 23:26 - 07832576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-07-19 09:30 - 2016-06-30 23:26 - 04895232 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-07-19 09:30 - 2016-06-30 23:26 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-07-19 09:30 - 2016-06-30 23:25 - 00784896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-07-19 09:30 - 2016-06-30 23:25 - 00711680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-07-19 09:30 - 2016-06-30 23:22 - 06295552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-07-19 09:30 - 2016-06-30 23:20 - 12128256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-07-19 09:30 - 2016-06-30 23:18 - 05205504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-07-19 09:30 - 2016-06-30 23:18 - 03663360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-07-19 09:30 - 2016-06-30 23:14 - 05660672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-07-19 09:29 - 2016-07-01 01:30 - 00284352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-07-19 09:29 - 2016-07-01 00:49 - 00337336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2016-07-19 09:29 - 2016-07-01 00:35 - 01554152 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpmde.dll
2016-07-19 09:29 - 2016-07-01 00:35 - 01552104 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-07-19 09:29 - 2016-07-01 00:35 - 01299504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-07-19 09:29 - 2016-07-01 00:35 - 01092464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-07-19 09:29 - 2016-07-01 00:35 - 00847656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-07-19 09:29 - 2016-07-01 00:35 - 00498960 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFCaptureEngine.dll
2016-07-19 09:29 - 2016-07-01 00:35 - 00331616 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-07-19 09:29 - 2016-07-01 00:34 - 03675512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-07-19 09:29 - 2016-07-01 00:34 - 00808288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WWAHost.exe
2016-07-19 09:29 - 2016-07-01 00:33 - 04515256 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-07-19 09:29 - 2016-07-01 00:33 - 01750440 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcMon.exe
2016-07-19 09:29 - 2016-07-01 00:33 - 00730352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-07-19 09:29 - 2016-07-01 00:33 - 00725776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2016-07-19 09:29 - 2016-07-01 00:33 - 00303216 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-07-19 09:29 - 2016-07-01 00:32 - 01603224 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2016-07-19 09:29 - 2016-07-01 00:32 - 01540224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-07-19 09:29 - 2016-07-01 00:32 - 00692136 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-07-19 09:29 - 2016-07-01 00:31 - 01848584 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-07-19 09:29 - 2016-07-01 00:31 - 00604928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-07-19 09:29 - 2016-07-01 00:31 - 00161632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-07-19 09:29 - 2016-07-01 00:25 - 02145032 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-07-19 09:29 - 2016-07-01 00:25 - 00577376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-07-19 09:29 - 2016-07-01 00:25 - 00393568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-07-19 09:29 - 2016-07-01 00:24 - 00911648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2016-07-19 09:29 - 2016-07-01 00:23 - 01349640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmde.dll
2016-07-19 09:29 - 2016-07-01 00:21 - 02921880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-07-19 09:29 - 2016-07-01 00:21 - 00703840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WWAHost.exe
2016-07-19 09:29 - 2016-07-01 00:20 - 00503600 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMRServer.dll
2016-07-19 09:29 - 2016-07-01 00:20 - 00388896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpps.dll
2016-07-19 09:29 - 2016-07-01 00:19 - 05240960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2016-07-19 09:29 - 2016-07-01 00:11 - 01522160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2016-07-19 09:29 - 2016-06-30 23:57 - 00089600 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2016-07-19 09:29 - 2016-06-30 23:53 - 00192000 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2016-07-19 09:29 - 2016-06-30 23:52 - 00218624 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-07-19 09:29 - 2016-06-30 23:52 - 00185856 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10_1.dll
2016-07-19 09:29 - 2016-06-30 23:50 - 11545088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-07-19 09:29 - 2016-06-30 23:50 - 00349184 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntprint.dll
2016-07-19 09:29 - 2016-06-30 23:50 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WPDShServiceObj.dll
2016-07-19 09:29 - 2016-06-30 23:49 - 00290816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-07-19 09:29 - 2016-06-30 23:49 - 00253440 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Maps.dll
2016-07-19 09:29 - 2016-06-30 23:49 - 00167936 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetpp.dll
2016-07-19 09:29 - 2016-06-30 23:48 - 00642048 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-07-19 09:29 - 2016-06-30 23:48 - 00530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-07-19 09:29 - 2016-06-30 23:48 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-07-19 09:29 - 2016-06-30 23:47 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadcloudap.dll
2016-07-19 09:29 - 2016-06-30 23:47 - 00296960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2016-07-19 09:29 - 2016-06-30 23:47 - 00287232 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2016-07-19 09:29 - 2016-06-30 23:47 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-07-19 09:29 - 2016-06-30 23:47 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2016-07-19 09:29 - 2016-06-30 23:46 - 00714240 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll
2016-07-19 09:29 - 2016-06-30 23:45 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.UX.EapRequestHandler.dll
2016-07-19 09:29 - 2016-06-30 23:45 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-07-19 09:29 - 2016-06-30 23:44 - 00276480 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecsExt.dll
2016-07-19 09:29 - 2016-06-30 23:43 - 00892416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2016-07-19 09:29 - 2016-06-30 23:43 - 00708608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-07-19 09:29 - 2016-06-30 23:43 - 00519680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WLanConn.dll
2016-07-19 09:29 - 2016-06-30 23:43 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanconn.dll
2016-07-19 09:29 - 2016-06-30 23:42 - 14252544 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-07-19 09:29 - 2016-06-30 23:42 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-07-19 09:29 - 2016-06-30 23:42 - 02088960 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpdshext.dll
2016-07-19 09:29 - 2016-06-30 23:42 - 01434112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Editing.dll
2016-07-19 09:29 - 2016-06-30 23:42 - 01240064 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10.dll
2016-07-19 09:29 - 2016-06-30 23:42 - 00828928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2016-07-19 09:29 - 2016-06-30 23:42 - 00697344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2016-07-19 09:29 - 2016-06-30 23:42 - 00480768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-07-19 09:29 - 2016-06-30 23:42 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-07-19 09:29 - 2016-06-30 23:41 - 02127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-07-19 09:29 - 2016-06-30 23:41 - 01387520 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-07-19 09:29 - 2016-06-30 23:41 - 01054208 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-07-19 09:29 - 2016-06-30 23:41 - 00990208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-07-19 09:29 - 2016-06-30 23:41 - 00784384 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-07-19 09:29 - 2016-06-30 23:41 - 00697856 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2016-07-19 09:29 - 2016-06-30 23:41 - 00599040 _____ (Microsoft Corporation) C:\WINDOWS\system32\duser.dll
2016-07-19 09:29 - 2016-06-30 23:41 - 00587776 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-07-19 09:29 - 2016-06-30 23:40 - 01902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-07-19 09:29 - 2016-06-30 23:40 - 01575936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-07-19 09:29 - 2016-06-30 23:40 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-07-19 09:29 - 2016-06-30 23:40 - 00841728 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-07-19 09:29 - 2016-06-30 23:40 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\system32\webio.dll
2016-07-19 09:29 - 2016-06-30 23:39 - 01752576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-07-19 09:29 - 2016-06-30 23:39 - 01717248 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-07-19 09:29 - 2016-06-30 23:39 - 01211904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-07-19 09:29 - 2016-06-30 23:39 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuuhext.dll
2016-07-19 09:29 - 2016-06-30 23:38 - 04456448 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-07-19 09:29 - 2016-06-30 23:38 - 01671168 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-07-19 09:29 - 2016-06-30 23:38 - 01063936 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-07-19 09:29 - 2016-06-30 23:38 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-07-19 09:29 - 2016-06-30 23:37 - 01073152 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-07-19 09:29 - 2016-06-30 23:37 - 00865792 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-07-19 09:29 - 2016-06-30 23:36 - 01141248 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcsecproc.dll
2016-07-19 09:29 - 2016-06-30 23:36 - 00701952 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-07-19 09:29 - 2016-06-30 23:34 - 03994624 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-07-19 09:29 - 2016-06-30 23:34 - 03428864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-07-19 09:29 - 2016-06-30 23:33 - 02285568 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebSync.dll
2016-07-19 09:29 - 2016-06-30 23:33 - 00057344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WPDShServiceObj.dll
2016-07-19 09:29 - 2016-06-30 23:32 - 00268800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-07-19 09:29 - 2016-06-30 23:31 - 01797120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-07-19 09:29 - 2016-06-30 23:31 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\StikyNot.exe
2016-07-19 09:29 - 2016-06-30 23:30 - 03585536 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-07-19 09:29 - 2016-06-30 23:30 - 02635776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-07-19 09:29 - 2016-06-30 23:30 - 00849920 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-07-19 09:29 - 2016-06-30 23:30 - 00546816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActionCenterCPL.dll
2016-07-19 09:29 - 2016-06-30 23:30 - 00292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3ui.dll
2016-07-19 09:29 - 2016-06-30 23:29 - 03355136 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2016-07-19 09:29 - 2016-06-30 23:29 - 02609664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2016-07-19 09:29 - 2016-06-30 23:29 - 02352128 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-07-19 09:29 - 2016-06-30 23:29 - 00368128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanui.dll
2016-07-19 09:29 - 2016-06-30 23:29 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2016-07-19 09:29 - 2016-06-30 23:28 - 02876928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2016-07-19 09:29 - 2016-06-30 23:28 - 00197120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netplwiz.dll
2016-07-19 09:29 - 2016-06-30 23:27 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-07-19 09:29 - 2016-06-30 23:27 - 01729024 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-07-19 09:29 - 2016-06-30 23:27 - 00846336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasgcw.dll
2016-07-19 09:29 - 2016-06-30 23:27 - 00559616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2016-07-19 09:29 - 2016-06-30 23:27 - 00496128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-07-19 09:29 - 2016-06-30 23:27 - 00250880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-07-19 09:29 - 2016-06-30 23:27 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToReceiver.dll
2016-07-19 09:29 - 2016-06-30 23:27 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-07-19 09:29 - 2016-06-30 23:26 - 03026944 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-07-19 09:29 - 2016-06-30 23:26 - 01755648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dui70.dll
2016-07-19 09:29 - 2016-06-30 23:26 - 01171456 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\netcenter.dll
2016-07-19 09:29 - 2016-06-30 23:25 - 02745856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-07-19 09:29 - 2016-06-30 23:25 - 02050048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-07-19 09:29 - 2016-06-30 23:25 - 01121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2016-07-19 09:29 - 2016-06-30 23:25 - 01117184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-07-19 09:29 - 2016-06-30 23:25 - 00687616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-07-19 09:29 - 2016-06-30 23:25 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2016-07-19 09:29 - 2016-06-30 23:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-07-19 09:29 - 2016-06-30 23:24 - 12586496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wmp.dll
2016-07-19 09:29 - 2016-06-30 23:24 - 01467392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2016-07-19 09:29 - 2016-06-30 23:24 - 01390080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-07-19 09:29 - 2016-06-30 23:24 - 00673280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2016-07-19 09:29 - 2016-06-30 23:24 - 00405504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webio.dll
2016-07-19 09:29 - 2016-06-30 23:23 - 01526272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-07-19 09:29 - 2016-06-30 23:23 - 00760320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2016-07-19 09:29 - 2016-06-30 23:22 - 00639488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-07-19 09:29 - 2016-06-30 23:21 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\system32\RADCUI.dll
2016-07-19 09:29 - 2016-06-30 23:19 - 01987072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2016-07-19 09:29 - 2016-06-30 23:16 - 02771968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2016-07-19 09:29 - 2016-06-30 23:16 - 01984000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2016-07-19 09:29 - 2016-06-30 23:15 - 04413440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2016-07-19 09:29 - 2016-06-30 23:15 - 02217984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2016-07-19 09:29 - 2016-06-30 23:15 - 02102272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll
2016-07-19 09:29 - 2016-06-30 23:13 - 06740992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2016-07-19 09:29 - 2016-06-30 23:13 - 01249280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\usercpl.dll
2016-07-19 09:29 - 2016-06-30 23:09 - 02632192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2016-07-19 09:29 - 2016-06-30 23:08 - 01976832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpdshext.dll
2016-07-19 09:29 - 2016-06-30 23:08 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2016-07-19 09:28 - 2016-07-01 01:30 - 00587456 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-07-19 09:28 - 2016-07-01 00:50 - 00037232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wldp.dll
2016-07-19 09:28 - 2016-07-01 00:48 - 01238584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Taskmgr.exe
2016-07-19 09:28 - 2016-07-01 00:43 - 03449168 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSService.dll
2016-07-19 09:28 - 2016-07-01 00:38 - 01862008 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-07-19 09:28 - 2016-07-01 00:35 - 00586208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll
2016-07-19 09:28 - 2016-07-01 00:35 - 00035656 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfpmp.exe
2016-07-19 09:28 - 2016-07-01 00:33 - 00566104 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2016-07-19 09:28 - 2016-07-01 00:33 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-07-19 09:28 - 2016-07-01 00:32 - 01128104 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-07-19 09:28 - 2016-07-01 00:32 - 00106928 _____ (Microsoft Corporation) C:\WINDOWS\system32\phoneactivate.exe
2016-07-19 09:28 - 2016-07-01 00:21 - 00376536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2016-07-19 09:28 - 2016-07-01 00:20 - 00465760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2016-07-19 09:28 - 2016-07-01 00:20 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-07-19 09:28 - 2016-07-01 00:19 - 04074160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2016-07-19 09:28 - 2016-07-01 00:19 - 01355336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2016-07-19 09:28 - 2016-07-01 00:18 - 00064584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Clipc.dll
2016-07-19 09:28 - 2016-07-01 00:12 - 01866104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d9.dll
2016-07-19 09:28 - 2016-07-01 00:03 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-07-19 09:28 - 2016-07-01 00:00 - 00957952 _____ (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-07-19 09:28 - 2016-06-30 23:59 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosHostClient.dll
2016-07-19 09:28 - 2016-06-30 23:58 - 00824320 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-07-19 09:28 - 2016-06-30 23:58 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Speech.Pal.dll
2016-07-19 09:28 - 2016-06-30 23:57 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpreference.exe
2016-07-19 09:28 - 2016-06-30 23:56 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\musdialoghandlers.dll
2016-07-19 09:28 - 2016-06-30 23:55 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-07-19 09:28 - 2016-06-30 23:54 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-07-19 09:28 - 2016-06-30 23:54 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-07-19 09:28 - 2016-06-30 23:53 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-07-19 09:28 - 2016-06-30 23:53 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryBroker.dll
2016-07-19 09:28 - 2016-06-30 23:52 - 00072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-07-19 09:28 - 2016-06-30 23:52 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-07-19 09:28 - 2016-06-30 23:52 - 00040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2016-07-19 09:28 - 2016-06-30 23:51 - 00086528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-07-19 09:28 - 2016-06-30 23:51 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-07-19 09:28 - 2016-06-30 23:50 - 00270848 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-07-19 09:28 - 2016-06-30 23:50 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\FingerprintEnrollment.dll
2016-07-19 09:28 - 2016-06-30 23:49 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\IdCtrls.dll
2016-07-19 09:28 - 2016-06-30 23:48 - 06572032 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwanmm.dll
2016-07-19 09:28 - 2016-06-30 23:48 - 00381952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-07-19 09:28 - 2016-06-30 23:48 - 00373248 _____ (Microsoft Corporation) C:\WINDOWS\system32\WmpDui.dll
2016-07-19 09:28 - 2016-06-30 23:48 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhengine.dll
2016-07-19 09:28 - 2016-06-30 23:48 - 00200192 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUDFPlatform.dll
2016-07-19 09:28 - 2016-06-30 23:47 - 00450048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Bluetooth.dll
2016-07-19 09:28 - 2016-06-30 23:47 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-07-19 09:28 - 2016-06-30 23:47 - 00394752 _____ (Microsoft Corporation) C:\WINDOWS\system32\WMPhoto.dll
2016-07-19 09:28 - 2016-06-30 23:47 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2016-07-19 09:28 - 2016-06-30 23:47 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-07-19 09:28 - 2016-06-30 23:47 - 00237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-07-19 09:28 - 2016-06-30 23:47 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2016-07-19 09:28 - 2016-06-30 23:47 - 00174592 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00715776 _____ (Microsoft Corporation) C:\WINDOWS\system32\GamePanel.exe
2016-07-19 09:28 - 2016-06-30 23:46 - 00510464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00475648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00469504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00460800 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00458752 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToDevice.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanui.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00368640 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack_win.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00342016 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00287744 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ListSvc.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00258560 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-07-19 09:28 - 2016-06-30 23:46 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSClient.dll
2016-07-19 09:28 - 2016-06-30 23:45 - 00619520 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-07-19 09:28 - 2016-06-30 23:45 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll
2016-07-19 09:28 - 2016-06-30 23:45 - 00440320 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcfg.dll
2016-07-19 09:28 - 2016-06-30 23:45 - 00414720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-07-19 09:28 - 2016-06-30 23:45 - 00392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-07-19 09:28 - 2016-06-30 23:45 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\qdvd.dll
2016-07-19 09:28 - 2016-06-30 23:45 - 00317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.OneCore.dll
2016-07-19 09:28 - 2016-06-30 23:45 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msieftp.dll
2016-07-19 09:28 - 2016-06-30 23:45 - 00305152 _____ (Microsoft Corporation) C:\WINDOWS\system32\edputil.dll
2016-07-19 09:28 - 2016-06-30 23:45 - 00203776 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2016-07-19 09:28 - 2016-06-30 23:45 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2016-07-19 09:28 - 2016-06-30 23:44 - 07977472 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-07-19 09:28 - 2016-06-30 23:44 - 00492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-07-19 09:28 - 2016-06-30 23:44 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-07-19 09:28 - 2016-06-30 23:44 - 00451584 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2016-07-19 09:28 - 2016-06-30 23:44 - 00448000 _____ (Microsoft Corporation) C:\WINDOWS\system32\winipcfile.dll
2016-07-19 09:28 - 2016-06-30 23:44 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneBackupHandler.dll
2016-07-19 09:28 - 2016-06-30 23:44 - 00283648 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToReceiver.dll
2016-07-19 09:28 - 2016-06-30 23:44 - 00247296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssphtb.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 01056256 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 00992256 _____ (Microsoft Corporation) C:\WINDOWS\system32\sbe.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 00941568 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 00853504 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 00674304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mbsmsapi.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 00656896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 00556032 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 00529408 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 00356864 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2016-07-19 09:28 - 2016-06-30 23:43 - 00334848 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2016-07-19 09:28 - 2016-06-30 23:43 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSSync.dll
2016-07-19 09:28 - 2016-06-30 23:42 - 02012672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmsipc.dll
2016-07-19 09:28 - 2016-06-30 23:42 - 01716736 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-07-19 09:28 - 2016-06-30 23:42 - 00988160 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-07-19 09:28 - 2016-06-30 23:42 - 00965632 _____ (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-07-19 09:28 - 2016-06-30 23:42 - 00538112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2016-07-19 09:28 - 2016-06-30 23:42 - 00515072 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneDriveSettingSyncProvider.dll
2016-07-19 09:28 - 2016-06-30 23:41 - 01159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplicationFrame.dll
2016-07-19 09:28 - 2016-06-30 23:41 - 00939520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-07-19 09:28 - 2016-06-30 23:41 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-07-19 09:28 - 2016-06-30 23:41 - 00572928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WpcWebFilter.dll
2016-07-19 09:28 - 2016-06-30 23:40 - 02731008 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-07-19 09:28 - 2016-06-30 23:40 - 02103296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2016-07-19 09:28 - 2016-06-30 23:40 - 00938496 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2016-07-19 09:28 - 2016-06-30 23:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2016-07-19 09:28 - 2016-06-30 23:40 - 00775168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Display.dll
2016-07-19 09:28 - 2016-06-30 23:40 - 00529920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll
2016-07-19 09:28 - 2016-06-30 23:39 - 00243712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingMonitor.dll
2016-07-19 09:28 - 2016-06-30 23:38 - 06312448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-07-19 09:28 - 2016-06-30 23:38 - 01443840 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagperf.dll
2016-07-19 09:28 - 2016-06-30 23:38 - 00961536 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2016-07-19 09:28 - 2016-06-30 23:38 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFolder.dll
2016-07-19 09:28 - 2016-06-30 23:38 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IconCodecService.dll
2016-07-19 09:28 - 2016-06-30 23:37 - 01051648 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-07-19 09:28 - 2016-06-30 23:37 - 00638976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-07-19 09:28 - 2016-06-30 23:36 - 03415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncCenter.dll
2016-07-19 09:28 - 2016-06-30 23:35 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2016-07-19 09:28 - 2016-06-30 23:34 - 09919488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-07-19 09:28 - 2016-06-30 23:34 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-07-19 09:28 - 2016-06-30 23:34 - 00205312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oemlicense.dll
2016-07-19 09:28 - 2016-06-30 23:34 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppCapture.dll
2016-07-19 09:28 - 2016-06-30 23:33 - 07200256 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-07-19 09:28 - 2016-06-30 23:33 - 06973952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-07-19 09:28 - 2016-06-30 23:33 - 06675968 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-07-19 09:28 - 2016-06-30 23:33 - 00309760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntprint.dll
2016-07-19 09:28 - 2016-06-30 23:32 - 02563584 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-07-19 09:28 - 2016-06-30 23:32 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\IdCtrls.dll
2016-07-19 09:28 - 2016-06-30 23:31 - 00994816 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe
2016-07-19 09:28 - 2016-06-30 23:31 - 00870400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-07-19 09:28 - 2016-06-30 23:31 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WmpDui.dll
2016-07-19 09:28 - 2016-06-30 23:30 - 02066432 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-07-19 09:28 - 2016-06-30 23:30 - 00339968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WMPhoto.dll
2016-07-19 09:28 - 2016-06-30 23:30 - 00334336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcastdvr.exe
2016-07-19 09:28 - 2016-06-30 23:30 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2016-07-19 09:28 - 2016-06-30 23:29 - 02168320 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-07-19 09:28 - 2016-06-30 23:29 - 00541184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GamePanel.exe
2016-07-19 09:28 - 2016-06-30 23:29 - 00386560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2016-07-19 09:28 - 2016-06-30 23:29 - 00315904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BlockedShutdown.dll
2016-07-19 09:28 - 2016-06-30 23:28 - 03577344 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2016-07-19 09:28 - 2016-06-30 23:28 - 02912256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-07-19 09:28 - 2016-06-30 23:28 - 00578048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2016-07-19 09:28 - 2016-06-30 23:28 - 00347648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\zipfldr.dll
2016-07-19 09:28 - 2016-06-30 23:28 - 00283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.BioFeedback.dll
2016-07-19 09:28 - 2016-06-30 23:28 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msieftp.dll
2016-07-19 09:28 - 2016-06-30 23:28 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2016-07-19 09:28 - 2016-06-30 23:27 - 00629760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sud.dll
2016-07-19 09:28 - 2016-06-30 23:27 - 00613376 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2016-07-19 09:28 - 2016-06-30 23:27 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winipcfile.dll
2016-07-19 09:28 - 2016-06-30 23:27 - 00282624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2016-07-19 09:28 - 2016-06-30 23:27 - 00244736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssphtb.dll
2016-07-19 09:28 - 2016-06-30 23:26 - 02597888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2016-07-19 09:28 - 2016-06-30 23:26 - 00779264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sbe.dll
2016-07-19 09:28 - 2016-06-30 23:26 - 00502272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DevicePairing.dll
2016-07-19 09:28 - 2016-06-30 23:26 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mbsmsapi.dll
2016-07-19 09:28 - 2016-06-30 23:26 - 00400896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneDriveSettingSyncProvider.dll
2016-07-19 09:28 - 2016-06-30 23:26 - 00372224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppBroker.dll
2016-07-19 09:28 - 2016-06-30 23:26 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-07-19 09:28 - 2016-06-30 23:26 - 00298496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2016-07-19 09:28 - 2016-06-30 23:25 - 01508352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winmsipc.dll
2016-07-19 09:28 - 2016-06-30 23:25 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-07-19 09:28 - 2016-06-30 23:25 - 00984576 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2016-07-19 09:28 - 2016-06-30 23:25 - 00738816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2016-07-19 09:28 - 2016-06-30 23:25 - 00736768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SmartcardCredentialProvider.dll
2016-07-19 09:28 - 2016-06-30 23:24 - 01588224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-07-19 09:28 - 2016-06-30 23:24 - 01487872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll
2016-07-19 09:28 - 2016-06-30 23:24 - 01448960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2016-07-19 09:28 - 2016-06-30 23:24 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.dll
2016-07-19 09:28 - 2016-06-30 23:23 - 03695104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\D3DCompiler_47.dll
2016-07-19 09:28 - 2016-06-30 23:23 - 03301376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncCenter.dll
2016-07-19 09:28 - 2016-06-30 23:23 - 02578432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gameux.dll
2016-07-19 09:28 - 2016-06-30 23:23 - 01036288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2016-07-19 09:28 - 2016-06-30 23:23 - 00764928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-07-19 09:28 - 2016-06-30 23:23 - 00667648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AzureSettingSyncProvider.dll
2016-07-19 09:28 - 2016-06-30 23:23 - 00489984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2016-07-19 09:28 - 2016-06-30 23:23 - 00207872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\licensingdiag.exe
2016-07-19 09:28 - 2016-06-30 23:23 - 00184832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingMonitor.dll
2016-07-19 09:28 - 2016-06-30 23:22 - 030535

More replies
Answer Match 78.54%

I am looking for the best remote control software that works on a budget.

What do you recommend?

I would like most of the following features below. Most important is
that I can provide the most common support features to solve a
person's computer problem remotely, and it works through firewalls
with no client or support person setup. I imagine that means a
web-based solution like webex.com or inquerio.com, but they are too expensive for my
budget.

I liked DualDesk's features and price but the trial prooved not to work for a client's firewall I think. That is why I believe web-based is the answer.

Required features (mostly in order of priority)
------------------------------------------------
-remote control client's PC
-multiple chat sessions (two at least)
-file and folder transfer
-Works with Mozilla, Fire Fox, Internet Explorer, Netscape browsers at least
-Works through firewalls (PC or Mac) and NAT Routers with no setup
required on either end
-Does not require Internet Explorer to work or Active-X
-Don't have to reboot remote PC to start client session
-Allows Remote Reboot/Log-On/Off & shutdown
-works on remote PC without Windows Admin rights to create folders and
write to the registry
-small .exe file size to send client
-client can launch session via my web site or email or chat session
-session timer
-runs in Windows Safe-mode for remote PC
-reboot remote computer and auto login before login prompt
-encryption
-Show client part of y... Read more

More replies
Answer Match 74.34%

Hi
Long story as short as possible.
Just upgraded to full version Windows 10. In the previous 2 tech builds IE stopped working. Error
“ This page cannot be displayed “
Microsoft x 3 Techs 5 hours of remote assistance could not resolve the issue. I had no terminate the connection as was taking too long. Their final suggestion was that they feel there must be some (add-ons) preventing IE from starting.
 
I cannot cover all they did here over 5 hours
However, here are some key areas of trouble shooting done
 
Remediation
Reset Winsock and Network Settings
Reset Proxy Settings
Created another admin account (IE did not run with different user)
Removed Kaspersky Security
Internet options > advanced > restore default > Reset IE settings
All IE add-ons have been disabled within IE settings
Msconfig > turned off all services
 
Has anyone else had an issue like this? I’ve just created and attached a diagnostics scan as this is beyond me level.  
Thanks all

A:IE not working. Microsoft Tech 5 Hours remote support did not fix

Just a second part to this question. 
 
In the attached file diagnostic file. I see the following file .exe 
 
Program: Live Support Chat for Web Site Operator Console - Version: 5.7.3.r15174 by Provide Support, LLC 5.7.3 ("C:\Program Files (x86)\Provide Support\Live Support Chat for Web Site\unins000.exe")
 
Should this be there ?

6 more replies
Answer Match 73.92%

I got a pop up that was loud and wouldn't let me close it saying, "your computer has been infected call Microsoft" and I did because I turned it off and it was still yelling st me when I turned it back on. I gave the tech remote access and he said I had a tiny something trojan virus. Well I didn't fall for paying, got off the phone, held power button down and turned computer off. Am able to use it fine now with no more warning but am I safe after giving the remote access? I was on the phone for about 30 mins while he was going around to different areas in my computer telling me what all of the "problems" were.

A:Gave remote access to a "Microsoft tech support" am I safe?

It wasn't Microsoft, it was a scam.   I suggest you have a look here and create a new post asking for assistance to ensure your computer has not been compromised .

1 more replies
Answer Match 68.04%

How do I find a startup password?I can't even set my computer to its factory state

A:a tech support from wpc services took remote of my computer...

Arbear, welcome to the forum. You should contact the WPC Tech who did the setup of your computer.  He/she should be able to help you.  Your only other option is to do a full System Recovery which will allow you to either choose to setup a PW or not. Please click the Thumbs up + button if I have helped you and click Accept as Solution if your problem is solved.

1 more replies
Answer Match 65.52%

Hi,

I'm using Win 8.1 Pro. I want to use Microsoft Remote Control app on my Ipad to connect my PC (w Win8). Connection is ok, I can see my PC on the Ipad, but on my PC's screen the lockscreen will be visible. After the leaving the app I can't type my password
on my PC (return to normal use), I can see the textbox, PC doesn't accept any keyboard input. I have only one option, to restart the PC.

May I ask your help?

More replies
Answer Match 63.42%

I clicked on a news story ranked highly on Google News from a website called "Sci-Tech-Today.com".

After waiting through an adwall ("20 seconds until your article appears") I did not get my article, but the website looked a little...dodgy.

can anyone confirm that www.sci-tech-today.com and its parent, www.newsfactor.com are OK and not suspicious at all? None of my anti-virus things went off on either, and Firefox usually blocks sites it deems dodgy as well but did not go off on either. There were no reports about either on the McAfee Siteadvisor website, but i'm just a little curious about these two slightly odd looking news sites I haven't heard of before.
 

A:Solved: Sci Fi Tech Today?

What makes you think they're suspicious?

They seem perfectly clean to me.

http://www.urlvoid.com/scan/sci-tech-today.com

http://www.urlvoid.com/scan/newsfactor.com
You seem way out on a paranoļa spree with your recent threads. Relax!
 

2 more replies
Answer Match 61.74%

I know someone is controlling my MAC and likely on my wifi home network.

I ran a program that found many scripts viruses in .pdf files.

I've tried all I can online and they still have control of my system. Of course, I don't want to use it.

Please, help me to get rid of this intruder.

Thanks.

MacBook Pro, Lion v. 10.8.1, late 2010

More replies
Answer Match 61.74%

I am running XP Pro at home, and XP Pro at work.

often I have to physically get to the office just to upload some files, and MS Outlook Calendar file. Which sometimes gets a bit troublesome because I get calls from my boss for me to go in and upload the files, I cant send it to him too, because he has no clues how to do them.

Is there any software that will let me connect to my computer at work and do things as if I am working on that computer?
 

A:Control a Remote Computer ?

7 more replies
Answer Match 61.74%

Can anyone recommend software , free if possible, so that I could access a friends computer and use remote control to use the computer as if I was siting in front of it. Also to copy and transfer files and folders. Does the remote computer have to be turned on to do this? Does the remote computer have to have the software installed as well?

A:Remote control computer

I use TeamView Portable, it's free and simple. Google it and you should be able to find it. It's a very light program, the other PC requires it, just copy and paste the *same version* as you onto their PC, program has to be open also. Your able to transfer files, and you do not have to have an Administrator on their PC. Check it out.

1 more replies
Answer Match 61.74%

Can anyone recommend software , free if possible, so that I could access a friends computer and use remote control to use the computer as if I was siting in front of it. Also to copy and transfer files and folders. Does the remote computer have to be turned on to do this? Does the remote computer have to have the software installed as well?
 

A:Remote control a computer

Does the remote computer have to be turned on to do this?Click to expand...

Yes

will your friend always be in front of the PC , if so quite a few free software to do that
zolved - http://www.zolved.com/user/login?quick=true
crossloop - http://www.crossloop.com/index.jsp
teamviewer - http://www.teamviewer.com/index.aspx
 

1 more replies
Answer Match 61.32%

There is a remote computer/ server logging on and and controlling my computer.
I realized that it has changed around around my files
When I go into My computer, my profile windows logon is a folder under there along with the drives.
There is also another folder called Common Files. I think THIS remote computer has changed my log on TO BE A dependent on a service that is logged on. Its called IANMAN COMPUTER. This is a personal home computer and the only one. So its not part of a network

Commodo firewall REported/ detected that I was a new netwotk was dected that I was a part of

The Hijack this log is pretty uslewss and does not show much.

I found these lines using Regrun/ Unhackme:
Windows Core Components tab in Regrun/ Unhackme
Active Setup items
--------------
"%ProgramFiles%\Outlook Express\ setup50.exe" /APP:OE /CALLER:WINTT /user install
shows this target file in system
D:\PROGRAM FILES\OUTLOOK EXPRESS\SETUP50.EXE
--------------
--------------
"%ProgramFiles%\Outlook Express\ setup50.exe" /APP:WAB /CALLER:WINTT /user install
shows this target file in system
D:\PROGRAM FILES\OUTLOOK EXPRESS\SETUP50.EXE
--------------
--------------
%systemRoot%\system32\regsvr32.exe /s /n /i:UserInstall %SystemRoot%\system32themeui.dll
shows this target file in system
D:\WINDOWS\SYSTEM32\REGSVR32.EXE
--------------
--------------
%systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
points to
D:\WINDOWS\SYSTEM32\SHMGRATE.EXE
--------------
--------------
%system... Read more

More replies
Answer Match 60.9%

i was wondering if logitech made a remote to control the sound system i bought from them or if i could control my computer but i cant install any hardware into the computer thnks
 

More replies
Answer Match 60.9%

I have looked at several different pages but haven't really found the real answer to remote control in my circumstances.. I am running Windows 7 Home Premium 32 bit SP1. My son who lives a long way off is running XP.. Is there a program (preferably a freeby as it won't be used very often) that I can see his desktop on my PC and sort out some of his problems.. At present windows explorer keeps giving problems saying that the web site he tries to access is giving problems and it then returns to the home page. There are times when such a program would be useful so that I understand what he is telling me over the phone. Any help gratefully rec'd.

A:Use Win 7 to remote control WinXP computer

Hello Roger,

I have used "TeamViewer" for exactly the kind of situations you are describing. It is free for private use and is very easy to use:

http://www.teamviewer.com/en/index.aspx

3 more replies
Answer Match 60.9%

I found strange logins at my Microsoft office online account using browsers I dont use on that account (Edge and also Internet Explorer were on the log at microsoft when I only use Chrome for daily routine) but the IP address is definitely my address.  More history:  I switched to Windows 10 from windows 8.1  in August after getting a strange feeling that my screen was blinking at odd times when sensitive information was on the screen such as a password login, etc. Blinking screen stopped after install of windows 10 so I thought I was ok until recent experiences such as the microsoft account.  Further background is that Ive had weird experiences that have left me suspicious but havnt been able to put my finger on anything.  Perhaps its a leftover gut reaction to the fact that my android moto x 2014 phone was clearly the victim of a hardware or operating system hack that wouldnt go away even after factory resets - someone was opening screens and typing random words in emails etc.  So I got a new phone.  And so Im suspicious also of my computer which I bought brand new with full warranty on Ebay from a high volume seller.  So I would appreciate any information as to why various logs show so many errors and whether my computer is entering into internet "conversations" etc. without my involvement.  
 
I have a dell xps 15 running windows 10.  A few weeks ago I added Hitman Pro to the basic protections that Windows 10 provides... Read more

A:Spyware and/or remote control of my computer

Hello and welcome to Bleeping Computer! I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.
We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.
To help Bleeping Computer better assist you please perform the following steps:
*************************************************** In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/596101 <<< CLICK THIS LINK
If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.
***************************************************If you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of t... Read more

5 more replies
Answer Match 60.9%

I am at college, and my parents at home are computer illiterate. I've had tech services load a program so that the support rep could see my screen on their computer and control my pointer so that they could navigate my computer remotely. This would be perfect for me to use with my parents. Can anyone recommend a free program to use? Thanks!
 

A:Remote Computer Control and Viewer

6 more replies
Answer Match 60.9%

I just need some advice, please!! I have found a need to Remotely access a computer on my Small Business Network from one of the other computers and I need to know what FREE programs you would recommend. I am a very small business and the alternative is to purchase a used, gargantuan old monitor & Keyboard from Goodwill for this third computer or remotely access it from another one. As such, it needs to be a free program or it just isn't worth doing. I have read reviews on LogMeIn & TeamViewer. They both seem fine. Here's the scenario:

On my network there are four computers: A) Laptop with Windows 7, B) Laptop with XP (SP 3, I think), C) Laptop with Vista (not really part of this but it's my wife's and I may add this program to her computer since she refuses to do the updates!) and D) an older Desktop with XP (SP 3, I think).

I use Laptops A and B for my business to house different clients. They are attached to a desktop monitor and keyboard through a KVM switch (those are the right initials I think). I'm mostly in my office but it's all portable when I need to travel, thus the laptops and a desktop setup. I am using computer D only as backup, storage and it houses the network printer. I out thought myself on this one when I made that computer completely inaccessible by its not having a keyboard or monitor. I thought it would not be that big a deal but something is going on with the print spooler so I have to manually delete every print... Read more

A:Solved: Remote Computer Control

7 more replies
Answer Match 60.48%

Hi, i suspect that a remote control hack that have been put into my computer which u all can read from the previous posts from me.I have conducted several avg scans and gmer scans but i didn't find any infections such as trojans.However,the hacker seems to be able to know what am i doing in my computer every second such as how long have i been listening to music or watching a show on the computer.Sometimes my cursor would move to the max point and recently i found that my cursor move up and down constantly for 2seconds or so in a very fast speed in the middle of my screen(my mouse are about 4-5 yrs old could this be the case?).I need help on removing this hack if there really is.Thanks.

A:How to remove remote control hacks that have been put into a computer?

Quote:





Originally Posted by Ried


Please stop posting multiple threads for the same issue, and follow the instructions that were given to you back on September 1. http://www.techsupportforum.com/f100...rs-510807.html

You have bits and pieces of information regarding this same issue, spread out over the last couple of months and all in different threads. Please post all the various info into your current thread here http://www.techsupportforum.com/f100...er-516434.html, as well as the logs that were requested.

12 more replies
Answer Match 59.64%

Is there a way to uninstall a program from Control Panel on a remote machine without RDP?
Thank you

Tuan

More replies
Answer Match 59.64%

Error 732 your computer and the remote computer could not agree on PPP control protocols.

is the exact error i get when I try and dialupto my internet most of the time, but after multiple tries it will connect...but only at a maximum speed of 38.6 kps.

Any ideas how tocombat this?

It just started doing it one day.

Cheers!
-Nick
 

More replies
Answer Match 59.22%

·                                                                                                                                                                                            
I haI have been accessing one of my windows 7 remotely using RDC. For some reasons  I can’t access it any more with this message:  
"Remote Desktop cannot verify the identity of the remote computer because there is a time or date difference
between your computer and the remote computer. Make sure your computer's clock is set to the corr... Read more

A:Remote Desktop cannot verify the identity of the remote computer because there is a time or date difference between your computer and the remote computer

Ours was a DNS issue.  Someone put an entry in the wrong firewall.
 

15 more replies
Answer Match 59.22%

I can't get logs as the computer is totally locked.
 

More replies
Answer Match 59.22%

i have lost all security controls and lots of things are locked down. seems to be running in the recovery drive. need help removing it. thank you in advance.

A:lost control over computer remote access virus of some type

Hi and welcome to the Virus/Trojan/Spyware/Malware Removal forum,I am thcbytes and I am here to help you!I ask that you refrain from running tools other than those I suggest to you while I am cleaning up your computer. The reason for this is so I know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.Please perform all steps in the order received and do not proceed if you need clarification.Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems please stop and tell me about it. When your computer is clean I will alert you of such. I will also provide you with detailed suggestions for prevention.In the upper right hand corner of the topic you will see a button called Watch this topic. Click on this then choose Immediate E-Mail notification and then Proceed and you will be advised when I respond to your topic by email.Please try to complete the steps and reply at least every 24 hours. If you find that your delayed just post a quick reply here and let me know!! After 5 days if your topic is not replied I will assume it has been abandoned and I will close it.I would also like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please be courteous and appreciative for the assistance provided!Again I would like to remind you to make no further changes to your c... Read more

2 more replies
Answer Match 59.22%

It appears my Security Center has been taken over. I think it was done via remote access. I do not use remote access and Im a stickler about this and have on many occasions assured it was disabled. It started a few months back while using Windows Media player. My computer a Dell Latitude E4300 with win 7 began acting slow and then Explorer would constantly crash especily when trying to access the my documents folder. Ive been running in safe mode and mini xp every since then. I made an ISO backup becuase Ive been so worried of losing my personal media. I just stepped on to the Divorced Team and I'm tryin to save the good media of it anyways. Also my restore points option has been disabed. Ive used pretty much every program and removed well over 100 supposed virus's as well as ran the uninstallers.  Rkill states to check hosts and at first it would have lists and lists of weird site address's like 105 or 108 something of that nature.  Now my computer "appears" to run good until I attempt to tinker with it. I installed Panda glogal last night and was excited until it destroyed that as well. I cannot recieve any windows updates and now my Security Center states that its off as well as my firewall being disabled.  I cannot enable s-center "error 126." I went into "sys32" and all users other than "Trusted installer" have only th authourity to read the trusted installer has full access. Im not sure if thats correct or not.  Also have multiple unidentified users.... Read more

A:Lost control of my computer. Security Center/firewll are off. Remote is on

Hello,Please follow the instructions in ==>This Guide<== starting at step 6. If you cannot complete a step, skip it and continue.Once the proper logs are created, then post them in a reply to this topic by using the Add Reply button.If you can produce at least some of the logs, then please create the post and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the reply and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

2 more replies
Answer Match 58.38%

I have a fake Microsoft security essentials virus message when I go to the internet. I run MalwareBytes everyday but it has not detected this.

Would appreciate any help to get rid of this. Below are files requested.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:39:02 AM, on 2/8/2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Hewlett-Packard\OrderReminder\OrderReminder.exe
C:\Program Files\AVG SafeGuard toolbar\vprot.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Windows\system32\wuauclt.exe
C:\Users\New\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://login.yahoo.com/config/login_verify2?.intl=us&.src=ym
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\M... Read more

More replies
Answer Match 57.96%

Is there a way to over ride their password? He said he was with Microsoft but it was an antivirus sales gimmick.

A:fake Microsoft person changed admin password computer now lo...

@savhvip? If the login screen looks like this then try to restore to a date before they did this.  REO

2 more replies
Answer Match 57.96%

A fake Microsoft Essentials box came up and my son clicked on it. I logged in under another user and have installed Malwarebytes. I have lost all my accessories and most of my desktop. Whenever I use google it redirects me. I am not very knowledgable about computers! UGGGHHH!

I think I have all the logs you requested.

Tech Support Guy System Info Utility version 1.0.0.1
OS Version: Microsoft Windows XP Home Edition, Service Pack 3, 32 bit
Processor: Intel(R) Atom(TM) CPU N270 @ 1.60GHz, x86 Family 6 Model 28 Stepping 2
Processor Count: 2
RAM: 1015 Mb
Graphics Card: Mobile Intel(R) 945 Express Chipset Family, 1 Mb
Hard Drives: C: Total - 76308 MB, Free - 63303 MB;
Motherboard: Hewlett-Packard, 361A, KBC Version 02.11,
Antivirus: AVG Anti-Virus Free, Updated: Yes, On-Demand Scanner: Enabled
GMER 1.0.15.15627 - http://www.gmer.net
Rootkit scan 2011-05-25 15:56:53
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3 SAMSUNG_HS082HB rev.NL100-04
Running: wm0iidkd.exe; Driver: C:\DOCUME~1\RONST~1.AMA\LOCALS~1\Temp\kwtyrkob.sys

---- Kernel code sections - GMER 1.0.15 ----
INITc VolSnap.sys F75D3BD0 4 Bytes [B0, A5, 53, 80]
INITc VolSnap.sys F75D3BF8 4 Bytes [B8, A1, 4F, 80]
INITc VolSnap.sys F75D3C20 4 Bytes [B6, AE, 4F, 80]
INITc VolSnap.sys F75D3C48 4 Bytes [30, FF, 4F, 80]
INITc VolSnap.sys F75D3C70 4 Bytes [7A, A8, 4F, 80]
INITc ...
? C:\DOCUME~1\RONST~1.AMA\LOCALS~1\Temp\mbr.sys The system cannot find the file specified. !
---- User code se... Read more

More replies
Answer Match 57.54%

Hello,

I have a Windows 7 network set up and whenever I connect remotely to another computer and lock their input such as their keyboard and mouse, the remote user still has the ability to press ctrl alt del, which then allows them to use their keyboard and mouse. My question is, is it possible to disable the ctrl alt del functionality in Windows 7 so that that Blue security screen does not appear? I have tried lots of remote desktop controlling software which has the option to lock the remote computer input, but they still can press ctrl alt del and unlock their keyboard and mouse. How do I stop this? Thanks!

Best regards,

Jerry
 

A:Solved: Remote Desktop Control ends when remote user presses ctrl alt del

Let's try the Symantec Pc Anywhere.This a very Useful software for remote desktop sharing and file transfer and there is the locking feature...
 

1 more replies
Answer Match 57.12%

Hello!Two days ago I was copying some analog video to digital via my old laptop (Dell Latitude D600) because it runs Windows XP.The driver for the hardware only works with Windows XP. But there was no security software on the laptop, only Norton Utilities.So I opened my USB drive to install something but it wouldn't start.I got the alert: "Microsoft Security Essentials Alert". I knew from that moment that I was infected.So I tried the follow the guide here on bleepingcomputer:http://www.bleepingcomputer.com/virus-remo...ssentials-alertBut that didn't work. I could't start executable files (taskmgr/regedit). So RKILL.com didn't work too. (When I tried, the alert was popping up)In safe mode it didn't work either. I got also the alert that there is a problem in services.exe and the the computer is closing down in 60 seconds.I tried to run Malware AntiBytes, but I couldn't update because when I tried to start it, I couldn't connect to the internet. I was looking in Internet Options but there was no Proxy server connection. Everything was OK.With norton utilities I could open a sort of processmanagement. I saw there was a kind op security program (antispy safeguard?) using a lot of CPU. I killed it, and I removed it out of Application data. Internet worked! I updated Malware Antibytes and I started scanning. He found some things:422888.exejytr.exemsftldr.dllsshnas21.dllAnd something like (Trojan.downloader Rogueagent..)Also I saw in pr... Read more

A:After virus removal (fake Microsoft Essential alert) computer don't boot up

What does it hang on?

6 more replies
Answer Match 56.7%

So I stumbled upon these guys.

http://www.digitaltoast.co.uk/supportonclick-systemrecure-scam

They seemed to be fishy right away, but they kept calling and calling so I eventually let them use this seemingly legitimate logmein123 program thingy.

The guys claimed to be MS employees and they said Windows Live had detected some stuff on my computer. They had some trouble because my computer's regional configuration is set to Spanish and everything is in that language. He tried to change it to US English, then UK English, then Afghanistanian Indian...by then he tried to open IE and I manually shut off my modem so they didn't get do anything. I called MS and checked online. Their phone number is supposed to be a Michigan one, but I'm guessing they're doing some kinda wiring. Anyway, I ran a few scans and cleaned my computer but I wanna see if anything else is missing so here's my log.

Logfile of Trend Micro HijackThis v2.0.3 (BETA)
Scan saved at 9:17:41 PM, on 3/5/2010
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18882)
Boot mode: Normal

Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Win... Read more

A:A problem after stumbling upon some fake tech support scammers

Would it be better to copy a log while I'm doing safe mode?
 

2 more replies
Answer Match 56.7%

Interested in finding out how fake telephone tech support scams work? Well, grab a cup or glass of your favorite beverage, and prepare to be educated, entertained, and horrified.
Chances are that you or someone you know has gotten a call from someone claiming to be from "Windows technical support" phoning up to tell you that you "computer has a virus" and offering to remove it for you - for a fee.

See also: What's the best and worst browser for Windows 10?

Now I don't know about you, but I've never had the time (or patience) to play along, so I've always been curious to find out how the conversation pans out.

Well, if you're interested in finding out what happens, grab a cup or glass of your favorite beverage, fire up YouTube, and prepare to be educated, entertained, and horrified.

Troy Hunt, security expert, Microsoft Regional Director and MVP, and the brains behind the Have I been pwned? data breach service, takes the time to show us exactly what happens.
Full Article. Here's how fake telephone tech support scams work | ZDNet
 

A:Here's how fake telephone tech support scams work

Great article and I hate how these people do this kind of thing to innocent civilians by taking advantages of their knowledge. But the main question is how are they able to get the victim phone number? I been received numerous of phone called from these kind of people and the first thing they said is this: " Hi my name is blah blah blah, and we're from Microsoft Technical Department. Our server have received several reports from your computer and based on your reports it show signs your computer been infected with a virus." But good thing is I able to keep them on the phone for 30 minutes and at the end the scammer curse me with profanity words and I replied this: " Thank you for compliment, and you know? I able to keep you on the phone for 30 minutes so you can't scam other 30 innocent people."
 

0 more replies
Answer Match 56.7%

I am in need of a tech that can remotely go on to my computer and set up the drivers for a Nisca PR5200 card printer. This looks like a job that is out of my expertise. Fee's would be fine.
 

A:Tech that is remote capable

There are drivers here: http://www.nisca.co.jp/support.html
The page is in English, but if after you try the DownloadTool, and you still cannot get the printer to work right, let me know and I will remote assist.
 

1 more replies
Answer Match 56.7%

Our company, a small based business, wants to get into Remote Tech Support, Customers call in, or visit the website, and we fix problems remotely.
Of couse they must have internet access...that works...

Asking from all the people here, who has ideas of what kind of software would do this?
I have checked multiple online companies, prices can get steep.
Only 1 person, maybe 2, will be doing this remote support starting out, so dont need anything with 50+ users license.

I was thinking like PCAnywhere, or VNC, and such, but not sure how that would work web based and such...and I know Microsoft has the Assistance built into MSN Messenger, but it is remote view only i believe.

Anyway, I would greatly appreciate some alternatives...especially cheap ones!
 

A:Remote Tech Support

16 more replies
Answer Match 56.28%

Hello,
I originally posted in the Am I infected forum here. Last Monday, 3/21 my ISP cox communications sent me an email stating that I may be infected with Alureon/TDSS. I called 3 times and did everything they suggested. I ran MalewareBytes, Norton Power Eraser, Microsoft Safety Scanner, TDSSKiller, and Roguekiller. Plus my usual real time scanning Antivirus- MCafee Security suite.
 
Today while on my local news website, another window suddenly opened and contained a fake adobe flash update. I noticed right away because I hadn't clicked anything and it even appeared to take me to a different website. The domain was aaliyamericanapparel.com. I immediately shut down the fake installer and pressed the back button which took me back to the news article I was reading.
 
I have 1 desktop and another laptop that needs checking. My desktop also has a seagate external harddrive connected to it which is holding my backed up photos. Here is the Farbar scan for the desktop.....
 
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by smithfamily (administrator) on JNK-PC (29-03-2016 11:37:12)
Running from C:\Users\smithfamily\Downloads
Loaded Profiles: smithfamily (Available Profiles: smithfamily)
Platform: Windows 10 Home Version 1511 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-... Read more

A:ISP says Possible Alureon/TDSS, fake adobe flash download pop-up today

Malwarebytes scan logs
 
Malwarebytes Anti-Malware
www.malwarebytes.org
Update, 3/22/2016 9:18 AM, SYSTEM, JNK-PC, Manual, Remediation Database, 2016.2.12.1, 2016.3.18.1,
Update, 3/22/2016 9:18 AM, SYSTEM, JNK-PC, Manual, Rootkit Database, 2016.2.8.1, 2016.3.12.1,
Update, 3/22/2016 9:18 AM, SYSTEM, JNK-PC, Manual, Domain Database, 2016.2.16.8, 2016.3.21.11,
Update, 3/22/2016 9:18 AM, SYSTEM, JNK-PC, Manual, Malware Database, 2016.2.16.6, 2016.3.22.6,
Update, 3/22/2016 9:18 AM, SYSTEM, JNK-PC, Manual, IP Database, 2016.2.8.1, 2016.3.21.3,
Scan, 3/22/2016 9:41 AM, SYSTEM, JNK-PC, Manual, Start:3/22/2016 9:18 AM, Duration:22 min 1 sec, Threat Scan, Completed, 0 Malware Detections, 22 Non-Malware Detections,
(end)
 
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 3/22/2016
Scan Time: 9:18 AM
Logfile: malwarebytes2.txt
Administrator: Yes
Version: 2.2.1.1043
Malware Database: v2016.03.22.06
Rootkit Database: v2016.03.12.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
OS: Windows 10
CPU: x64
File System: NTFS
User: smithfamily
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 421701
Time Elapsed: 22 min, 1 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 1
PUP.Optional.HomePageHelper, HKU\S-1-5-21-454114346... Read more

21 more replies
Answer Match 55.86%

I don't know anything about computers and my 87 year old mother knows even less. She frequently will click on something that causes her email system to change passwords without being aware of it or do something else that causes her problems. We live an hour apart, but she wants me to come over to help. I thought I found the solution when her service provider COMCAST offered tech support through their XFININTY. She could call them, they would remote into her computer and fix her problem usually within 20 minutes. A few days ago, she got a letter saying that they were cancelling that service option and refunding her $ 15 monthly fee.

I have heard of so many scams out there. Are there any good legitimate and reasonably priced tech support services out there that she can call to remote into her system to figure out her issues? She has Windows 2010 and uses Outlook 2010 for email.
 

A:24/7 remote tech support for elderly

11 more replies
Answer Match 55.86%

In my E-Mail this morning:
Microsoft: Beware this fake Windows BSOD from tech support scammers' malware | ZDNet

A:Beware this fake Windows BSOD from tech support scammers' malware

Microsoft has sounded the alarm over a fake installer for its Security Essentials, which attempts to trick victims into contacting bogus help centers.

Tech-support scammers have stepped up their technical game, prompting a "severe" warning from Microsoft over new Windows malware that mimics Microsoft's free Security Essentials antivirus, and then displays a fake blue screen of death, or BSoD, with an error message and a suggestion to call a 1800 number that is not a Microsoft support center.








"Real error messages from Microsoft do not include support contact details," Microsoft said on its Malware Protection Center blog, warning of the new threat. It also never asks for payment for delivering tech support.



Microsoft: Beware this fake Windows BSOD from tech support scammers' malware | ZDNet

2 more replies
Answer Match 55.44%

On December 17 my husband and  I made the mistake of letting a tech person who called remote into my pc. I can't believe we fell for the scam but we did. We didn't give out our credit card information. He was mad when we asked that he stop the remote process. Later the next day we could not log on to the pc. There was a funny screen asking for a password - somebody later told us it was a "hive" password. We took the box to the computer repair shop in town that we have used. They removed the hive password. They recommended "F Secure" security program so we bought that. My daughter advised we change the IP address. We went on the chat line with  Verizon - they said Verizon has a secure IP address and didn't seem concerned but explained several ways to change it.  They said it's more important to change the WIFI password - the password we use to connect to the home wireless router. I think he meant the first password we use to log on to the computer. 
 
We have Windows 10, 
 
Verizon said I could check the IP by doing ""whatismyipaddress.com".  They also said you cannot have the same static IP address all the time. 
 
They said we could change it ... they described two ways to do this: 
 
a)  Disconnecting all wires to the router.... Then wait 4 hours..... Then reconnect......The IP address should now be changed
 
  they said alternatively we could break the DHCP release from within our router, type in a... Read more

A:Mistakenly let a foreign tech person remote into my pc

First, place a "security freeze" on your credit file at all four major credit bureaus. Your best protection against someone opening new credit accounts in your name is the security freeze (also known as the credit freeze), not the often-offered, under-achieving "credit monitoring". More info here: http://krebsonsecurity.com/2015/11/report-everyone-should-get-a-security-freeze/.
 
Using a known-clean computer, change ALL of your passwords, on everything. All of your hardware, (routers, modems, computers), network, email, financial sites, bank accounts, shopping sites, credit card accounts, utility accounts, etc., etc. Make a list of everything and start checking them off as you get them all changed.
 
Back your personal data files on your potentially compromised computer, then wipe the hard drive, reinstall Windows, get all of the available Windows updates and then restore your backed up data.
 
Now you can worry about occasionally changing the IP address if you like.
 
To keep from having to go through all of this ever again, get into the habit of backing up your computer at least once a month. (Something like Macrium Reflect Free works well).

1 more replies
Answer Match 55.44%

I recall many years ago VNC use to have a client you could use with a VNC server that would allow very easy remote support
 
You could place a link on your website the client would download a small file and run said file and the tech would get a notification that someone needed assistance and you would connect.
 
For the life of me I can not remember the tool used to wrap VNC inside this application.
 
.......basically I have a client looking for a simple easy to use, free remote tech support module for their website.

A:Remote tech support website intergration

Never mind it is UVNC SC i was thinking of

3 more replies
Answer Match 54.6%

I am helping a friend with a nasty infection.  He received the phone calls from the scam MS support people claiming he had viruses.  Eventually he gave in and let them have control of his computer.  He cut them off before paying but not before they had control.  I took a look at his computer later and found no evidence that there was any lingering problem on his computer, so I assumed that it was just a Teamviewer type tool that they had him download that gave them access.  After removing and running a few malware removal/scanning tools, I pronounced him clean.
 
An hour later he called and said his computer spontaneously logged him out and put a password on his user profile.  the password hint is "Your computer is infected, call this phone number to unlock".  I went back to his place and bypassed the (very real) Windows password lock.  Scanned again, ran TDSSKiller and a few other malware removers again, but suspected that he MUST have done something because this was a clean computer.
 
Didn't have time to do anything else in the past couple days but went back over yesterday.  Spent an hour on the phone with the number that the scammer gave us, trying to figure out if they had a secret back door into the computer.  They did not, and kept trying to get me to install various teamviewer clones to which I gave them the wrong ID once installed, which totally threw them for a loop.  I never actually did allow them in... Read more

A:Wierdest malware ever - windows password changed by evil fake phone tech support

Well, I ran out of patience  I left the computer offline for 24 hours and the infection did not return.  I then connected it for another 24 and by the time I checked in, it had been locked down again.  So it'll be a mystery I'm afraid.

3 more replies
Answer Match 54.18%

I just helped a small office transfer all their existing computers and equipment over to a new office site. They had new voice and data cables run, as well as patch panel and telephone and cable modem equipment set up in new office

The private telephone tech requested that I port forward port 8000 to the telephone equipments' IP address

He also requested that I provide the Office Static IP address to him

My question is--am I opening this office's network up to any security risks by forwarding port 8000 to his telephone equipment's internal system IP address and providing him the actual Static IP address of the office Internet connection?

Thanks to anyone that can give me some insight on the possible security risks
 

A:Port Forwarding For Telephone Tech To Do Remote Maintenance-Is It Safe?

11 more replies
Answer Match 54.18%

Hey all,

What applications do you guys use for this? Today my dad called me with his printer not working. After some unsuccessful attempts of trying to walk him through troubleshooting over the phone, I tried to get him to invite me with Windows 10 Remote Assistance, but it just gave him the error that his computer was not set up to send invitations.

Not sure what that was about. Then on a whim, I had him join and create a join.me meeting, and once I could see his screen and control his mouse I quickly fixed the problem.

Join.me isn't the best for this purpose though, as it prevents you from performing admin tasks (once you start something that requires elevated privileges, you lose mouse control)

Are there any better alternatives for next time I could use to screen share with him?

I liked the fact that join.me didn't require me to mess with port forwards for a direct connection like something like VNC would.

I don't really know what other options there are. I'm not a professional, so I am obviously not going to go out and buy an expensive software package for this purpose.

Does anyone have any suggestions? Maybe there is a quick fix to the "this computer is not set up to send invitations" message. (Maybe this is because he uses webmail, and doesn't have a email address associated with Windows?)

Appreciate any suggestions.

Thanks,
Matt
 

More replies
Answer Match 54.18%

Help please. I have a tech savvy 16 year old son that has to use his computer to do his homework, but is abusing it. I need to be able to see how he is using it (sites/time/things he's doing) and ideally restrict the site "affimatively" to just the sites he needs to do his homework. I check history, but he's savvy enuf' to clear individual entries as he goes..... I've reat about Webwatcher adn SpectrePro but have no idea what's good and what he couldn't detect and remove... I'm not that technical.... help please!
 

A:Parent Control S/W for tech savvy teen

7 more replies
Answer Match 54.18%

I usually have a total of 50 to 60 processes running with IE10/iTunes/MetroTwit open, but over the last week or so it's been sitting at more than 100. Yikes! Starting to think I had picked up a virus or something.

But after today's two updates (KB2764462 & KB2777294) it's gone back down to normal. Interesting...

A:Today's updates fixed out of control processes...

It is really interesting.. It should solve compatibility issues.

7 more replies
Answer Match 53.76%

I've been looking for good remote control software. I've tried a couple but I need something that I can install or have installed easily on the client side. Is there any remote control software that I can build an automated install package to send and install easily?

Thanks in advance

Jeremy
 

A:Remote Administration/ Remote Control

6 more replies
Answer Match 53.76%

Hello Fellow Bleeping Computer Users This is my second post, so bare with me, as I try to explain what I am looking for, and please forgive me if this gets posted in the wrong forum. Let me explain what I am looking for:I am looking for remote control or remote administration of computers. I know there are tons out there, some free, some paid versions. I could use recommendations of any software that you use along with urls to look at them.Currently I am looking at the following:* Log Me In -- http://logmein.com/* Real Vnc -- http://tinyurl.com/f5d3* Radmin -- http://tinyurl.com/mve4w* pcAnyhere -- http://tinyurl.com/ea7de* TightVnc - http://www.tightvnc.com/What I am looking for? Hmm good question. -- Looking for something easy to deploy to the computers that I have already in the field-- Something easy to use behind firewalls-- Allows Multiple AdminsThank you for your help.

A:Remote Control/administration Of Remote Pc's

I have, use, and like RealVNC. It is easy to use and can be configured to for a LAN or over the internet. The paid version has encryption and both free and pay versions are simple to set up. What type of environment will it be used in? Between two LANs or from LAN to computer?

5 more replies
Answer Match 52.92%

hxxp:// 98exe.net/Soft/ShowSoftDown.asp?UrlID=1&SoftID=1984[/url]i dont know how to to know my pc be controled, the Remote PC control can passby theAntiVirus,Mod Edit: Disabled active link(s) as it links to downloading an unfamiliar file.

A:wow,Sx 2013 Remote PC control, just know ur ip ,can control ur pc

Are you asking a question about whether or not your computer has been remotely controlled, whether there is a product which can remotely control it (bypassing your anti-virus) or something else?

1 more replies
Answer Match 52.5%

I've built myself quite a system, Theoretically its nothing short of kick ass, however, it runs low on resources all the time. I built a gaming system, (top of the line for most puter parts) it boots to desktop in under 30 seconds. I have 9 things running in my task bar. I play 2 games Eve Online and World of Warcraft.

Most of the stuff running in taskbar include Nvidia tools, Sound, Curse client (wow addon manager), Microsoft essentials AV, kbrd profiler (logitech), mouse config (razor), my messenger proggie, 2 others that escape me.

Any suggestions will suffice - but the system is more than capable of running more and shouldn't by hardware specs run out of resources at all. "But, hey its windows is the easy answer" - Not the answer i'm looking for - Looking for empirical evidence to why this is happening and will it be fixed in any service pack?

My Setup:

OS: Windows 7 Professional SP1 x64
Mobo: GIGABYTE GA-Z68XP-UD5
CPU: Intel Core i7-2600K Sandy Bridge
CPU Cooler: CORSAIR H80
Mem: CORSAIR Vengeance 16GB (4 x 4GB)
VDC: EVGA GTX570 2560MB (025-P3-1579-AR)
RAID: x2 ST32000641AS
SSD: Plextor M3 Series PX-128M3 2.5" 128GB SATA III
PWS: SeaSonic X750 Gold 750W
Case: Corsair Obsidian Series 650D

I find it really hard to believe that I can come close to low resources. According to my resource manager its only using up to 8gigs of physical memory even when my games are running and it stays nominal in that margin. Is it simply a windows glitch?

I've got the ... Read more

A:How could this be... To a Microsoft Tech

How large is the page file and on what drive?

9 more replies
Answer Match 52.08%

I was contacted from "Microsoft Technical Services group" because my computer  was sending error messages to Microsoft. They wanted to take control of my computer which I did not let them. I am pretty sure  that this was a scam. Their
phone number is 1-806-590-7967 so you can call them. Would Microsoft act this way?

More replies
Answer Match 52.08%

I purchased and installed Stopzilla version 5.0.
I have run the scans and assumed it did what I was hoping. However a friend who has a little more experience than I found a trojan in my running processes.
When I called Stopzilla's support they took over my laptop and he found many errors and warnings and told me that essential windows processes or programs had been stopped. He offered to fix it for a 1 year subsciption costing over $300.00. I can't afford that so here I am.
I know I am running too many processes in my task manager (117)
Today for the first time my computer shut down and I got the blue screen I've been told about.
Here is the hijackthis log. The DDS log didn't work or I didn't download it correctly???
I have limited experience but I am very willing to learn and I usually catch on fast... PLEASE HELP!!!!

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:49:24 PM, on 25/09/2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Lexmark 3600-4600 Series\lxdxmon.exe
C:\Program Files (x86)\Lexmark 3600-4600 Series\ezprint.exe
C:\Program Files (x86)\Sony\VAIO Media plus\VMpTtray.exe
C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
C:\Program Files\Sony\VAIO Wireless Wizard\AutoLaunchWLASU.exe
C:\Program Files (x86)\Google\Quick Search Box\GoogleQuickSearchBox.exe
C:\Program Files (x86)\MyWebSearch\bar\3.bin\M3SRCHMN.EXE
C:\Pro... Read more

A:A Microsoft tech says I need a fix fast

16 more replies
Answer Match 52.08%

dad allowed takeover of computer remotely....advised to run combofix to help....got log...now what do we do???!!
 combofixlog.txt   9.94KB
  6 downloads*Moderator Edit: Moved topic from XP to the more appropriate forum. Combofix logs are allowed in MRL only. Also, Microsoft has no way of knowing your computer has issues or if it is infected. ~ Queen-Evie*

A:microsoft tech scam

Moved to Virus, Trojan, Spyware, and Malware Removal Logs as there is a ComboFix log posted.I deleted the prior response.

1 more replies
Answer Match 52.08%

Microsoft Security Bulletin Summary for May 2014.
 

Security Update for Internet Explorer (2965111)
This security update resolves a publicly disclosed vulnerability in Internet Explorer. The vulnerability could allow remote code execution if a user views a specially crafted webpage using an affected version of Internet Explorer. An attacker who successfully exploited this vulnerability could gain the same user rights as the current user. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights.
 
 

 

Summary: An emergency out-of-band update will be released at 1PM Thursday for the bug in Internet Explorer being exploited in the wild. Windows XP will be patched in spite of being past its service life.
 
http://www.zdnet.com/microsoft-issuing-fix-for-ie-zero-day-today-7000029001/?s_cid=e589&ttag=e589&ftag=TREc64629f
 

 

More replies
Answer Match 51.24%

My grandfather got taken in by a Microsoft Windows Support Scam and I'm fairly certain that his laptop's got a bug that I can't get rid of. 
 
What happened:
 
He got a popup (while using Internet Explorer and after downloading an Adobe update) that said there was a security issue and that he needed to call a number for Windows Firewall Service. 
(I looked up the number and apparently other people have been taken in by this scam. Here it is on a Microsoft forum:
http://answers.microsoft.com/en-us/windows/forum/windows_vista-security/microsoft-tech-support-scam-call/52aac9a3-dca7-46e0-a856-4dba9529680c?db=5&page=2&auth=1)
 
This is what the Popup said:

""windows firewall service has been stopped due to virus/adware on your computer. please visit www.scannow.com/support or call toll free 1 888 447 4192 for support. root-kits/spyware may have caused the security breach on your network location. call toll free 1 888 447 4192 for technical assistance." 
 
 

 
So he called the number (1-888-447-4192) not knowing it was a scam and they said they were from Windows and that they needed remote access to his laptop to solve the security issue, which he gave them. (He said he did not give them any personal information, however.) 
 
After he told me what happened, I checked out his laptop. He had about a dozen popups that wouldn't close and some malware programs were added, which I have removed. 
 
Those programs w... Read more

A:Microsoft Tech Support Scam

Please follow the instructions in THIS GUIDE starting at Step 6. If you cannot complete a step, skip it and continue.Once the proper logs are created, then make a NEW TOPIC and post it HERE. Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

1 more replies
Answer Match 51.24%

So in recent days I have been advised by Microsoft that they cannot provide me with support resolving a windows 10 activation issue. I replaced a motherboard for one of my clients and it failed activation even after reentering the key. Everything looked as it should be to activate. I went to Microsoft for support and they refused to help me because i am a technician ..not the owner of the PC. This policy of not providing tech support to computer repairers because they are not the owners of the system is ridiculous. I am interested to know if anyone else has had similar experiences from microsoft "support"
Chryptic

A:Microsoft Tech Support Policy

New motherboard (if it's a different model than the one you replaced) = new system according to Microsoft's EULA/ToS for Windows keys. So if it's an OEM key, new motherboard = buy a new key.

4 more replies
Answer Match 51.24%

Curious if anyone has tried this service. Seems like a lot of newbie problems can be fixed here ... and for free.

Get Free Windows PC Tech Support and Malware Removal at Your Local Microsoft Store

What You Can Get For Free

This service is a part of Microsoft?s in-store ?Answer Desk? service. Think of it a bit like the Genius Bar at an Apple Store ? yes, those Microsoft Stores feel very modelled on Apple Stores.
The Answer Desk website allows you to choose a nearby store and make a free appointment. Drop in and a ?Service Advisor? will offer some free services for any Windows laptop, no matter where you purchased it.
Free services include ?extended diagnostics,? ?software repair or support,? ?virus and malware removal,? and ?PC tune-ups.? For comparison, just the ?Virus and spyware removal? costs $199.99 if you go to Best Buy?s Geek Squad instead.
We recommend against using the Geek Squad, obviously. You can service your computer on your own. But, if you do want some professional help, you can get it for free. And, if you have relatives you live near a Microsoft Store and they ask you to help remove malware from their PCs and make it run faster, you can tell them to take it to a Microsoft Store and have Microsoft do the work so you can avoid the frustration and save your own time.

There?s always a catch. Microsoft Stores are retail stores where they want to make money, not service locations operated only for the benefit of their customers. They do offer some paid services,... Read more

A:Microsoft Store Tech Support

It can't hurt to try, but I'd prefer finding support online or having a trusted, tech-savvy friend look at it first. In theory, they should be experts on their own products, so much of it will depend on the particular agent you are dealing with. If I had a relative that I couldn't get to easily, I'd probably suggest it, because the people at Best Buy's Geek Squad are clueless.

5 more replies
Answer Match 51.24%

My grandfather got taken in by a Microsoft Windows Support Scam and I'm fairly certain that his laptop's got a bug that I can't get rid of.

What happened:

He got a popup (while using Internet Explorer and after downloading an Adobe update) that said there was a security issue and that he needed to call a number for Windows Firewall Service.
(I looked up the number and apparently other people have been taken in by this scam. Here it is on a Microsoft forum:
MICROSOFT TECH SUPPORT SCAM CALL - Microsoft Community)

This is what the Popup said:


Quote:




""windows firewall service has been stopped due to virus/adware on your computer. please visit www.scannow.com/support or call toll free 1 888 447 4192 for support. root-kits/spyware may have caused the security breach on your network location. call toll free 1 888 447 4192 for technical assistance."




So he called the number (1-888-447-4192) not knowing it was a scam and they said they were from Windows and that they needed remote access to his laptop to solve the security issue, which he gave them. (He said he did not give them any personal information, however.)

After he told me what happened, I checked out his laptop. He had about a dozen popups that wouldn't close and some malware programs were added, which I have removed.

Those programs were:
Knctr itibiti
One SystemCare
WebDiscover Browser
some kind of remote access/assistance program and a player ... Read more

More replies
Answer Match 51.24%

Hello All,
 
My son just called me saying a window popped up saying something along the lines of "your computer may be infected.  call Microsoft tech support" and then they listed a number to call. Well, my son being the computer savvy expert that he is called the freakin number. He let whomever on the other end log into our computer and then told my son he needs $200.00 to clean it up for us. Could anyone tell me what (if any) damage could have been done?? This is the kids computer, so, as far as i know there is no important login information on it. But it is connected to the house wifi and I just don't know if that could be an issue.
 
Thanks in advance for any help!
 
Emily 

A:Microsoft Tech Support Redirect

Download Security Check from here or here and save it to your Desktop. Double-click SecurityCheck.exe Follow the onscreen instructions inside of the black box. A Notepad document should open automatically called checkup.txt; please post the contents of that document.NOTE 1. If one of your security applications (e.g., third-party firewall) requests permission to allow DIG.EXE access the Internet, allow it to do so.NOTE 2. SecurityCheck may produce some false warning(s), so leave the results reading to me.NOTE 3. If you receive UNSUPPORTED OPERATING SYSTEM! ABORTED! message restart computer and Security Check should run Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.Make sure the following options are checked:
Internet ServicesWindows FirewallSystem RestoreSecurity Center/Action CenterWindows UpdateWindows DefenderOther ServicesPress "Scan".It will create a log (FSS.txt) in the same directory the tool is run.Please copy and paste the log to your reply. Please download MiniToolBox and run it.Checkmark following boxes:Report IE Proxy SettingsReport FF Proxy SettingsList content of HostsList IP configurationList Winsock EntriesList last 10 Event Viewer logList Installed ProgramsList Devices (do NOT change any settings here)List Users, Partitions and Memory sizeList Restore PointsClick Go and post the result. Please download Malwarebytes Anti-Malware (MBAM) to your desktop.NOTE. If you already have MBAM 2.0 installed scroll down.Double-click ... Read more

5 more replies
Answer Match 51.24%

My grandfather got taken in by a Microsoft Windows Support Scam and I'm fairly certain that his laptop's got a bug that I can't get rid of.

What happened:

He got a popup (while using Internet Explorer and after downloading an Adobe update) that said there was a security issue and that he needed to call a number for Windows Firewall Service.
(I looked up the number and apparently other people have been taken in by this scam. Here it is on a Microsoft forum:
http://answers.microsoft.com/en-us/...ca7-46e0-a856-4dba9529680c?db=5&page=2&auth=1

This is what the Popup said:

Quote:
""windows firewall service has been stopped due to virus/adware on your computer. please visitwww.scannow.com/support or call toll free 1 888 447 4192 for support. root-kits/spyware may have caused the security breach on your network location. call toll free 1 888 447 4192 for technical assistance."Click to expand...

So he called the number (1-888-447-4192) not knowing it was a scam and they said they were from Windows and that they needed remote access to his laptop to solve the security issue, which he gave them. (He said he did not give them any personal information, however.)

After he told me what happened, I checked out his laptop. He had about a dozen popups that wouldn't close and some malware programs were added, which I have removed.

Those programs were:
Knctr itibiti
One SystemCare
WebDiscover Browser
some kind of remote access/assistance p... Read more

More replies
Answer Match 51.24%

I also can not open the App icon on home page

More replies
Answer Match 51.24%

updates for your pc are ready to download.................
 

A:microsoft windows updates today 07-12-05

bump
 

1 more replies
Answer Match 51.24%

Only 460 kb but evry little bit helps
http://www.pixpond.com/1/1fja5rv.jpg and heres a good read on how your apps have more holes then Microsoft..
http://www.pcworld.com/news/article/0,aid,124510,RSS,RSS,00.asp
 

A:New Critical Microsoft update today..

kidcnote said:

Only 460 kb but evry little bit helps
http://www.pixpond.com/1/1fja5rv.jpg and heres a good read on how your apps have more holes then Microsoft..
http://www.pcworld.com/news/article/0,aid,124510,RSS,RSS,00.aspClick to expand...

Bump..
Your Rights Online: Microsoft Loses Office Patent Dispute
Tuesday January 31
"According to CNet, Microsoft has lost a patent dispute with a developer involving the company's Excel and Access product lines; specifically how they interact via spreadsheets. Carlos Armando Amado had filed a patent in 1994: the dispute covers Microsoft's products from March 1997 to July 2003. Office 2003 users will need to upgrade to Service Pack 2; Office XP users will need to apply a patch."
 

1 more replies
Answer Match 51.24%

MS seems to be having a field day updating the native apps at the moment, virtually all the native ones have updates available over last couple days so if your store update settings are set to manual you might want to run a check. About the only one i reckon I haven't seen is an update for the useless groove app but I guess that one won't be far off either.

off top of my head, mail/calendar, calculator, voice recorder, phone, people, films and tv, one note, get office and a few others I've forgotten all came down the pipe this afternoon/evening. And they didn't manage to break any of them! At least they all seem fine on our machines.

A:Microsoft native app updates today

So far, I've only gotten an update for the "Get Started" app today.

3 more replies
Answer Match 50.82%

Microsoft has released a Tech Preview of EMET 5.0, the upcoming version of the Enhanced Mitigation Experience Toolkit.

Version:
Date Published:
5.1 Tech Preview

2/24/2014

File name:
File size:
EMET Setup.msi

9.1 MB

EMET User's Guide.pdf
1.8 MB
Download: http://www.microsoft.com/en-us/download/details.aspx?id=41963

EMET 5.0 Tech Preview release includes new functionality and updates, such as

- Attack Surface Reduction.
- EAF+.
- Enable the ?Deep Hooks? mitigation setting by default.
- Addressed several application-compatibility enhancements.

Please remember that EMET 5.0 Tech Preview requires .NET Framework 4, and in order to protect Internet Explorer 10 on Windows 8 you need to install KB2790907 ? a mandatory AppCompat update that has been released on March 12th.
 

A:Microsoft has released a Tech Preview of EMET 5.0

The Enhanced Mitigation Experience Toolkit (EMET) helps raise the bar against attackers gaining access to computer systems. EMET anticipates the most common actions and techniques adversaries might use in compromising a computer, and helps protect by diverting, terminating, blocking, and invalidating those actions and techniques. EMET helps protect your computer systems even before new and undiscovered threats are formally addressed by security updates and antimalware software. EMET benefits enterprises and all computer users by helping to protect against security threats and breaches that can disrupt businesses and daily lives.
Please note that this is a "Tech Preview" release. It is not ready for wide enterprise deployment.

Changelog
Announcement
EMET 5.0 Tech Preview release includes new functionality and updates, such as:
- Attack Surface Reduction.
- EAF+.
- Enable the ?Deep Hooks? mitigation setting by default.
- Addressed several application-compatibility enhancements.

Please remember that EMET 5.0 Tech Preview requires .NET Framework 4, and in order to protect Internet Explorer 10 on Windows 8 you need to install KB2790907 ? a mandatory AppCompat update that has been released on March 12th.

Download
Enhanced Mitigation Experience Toolkit 5.0 Tech Preview
 

3 more replies
Answer Match 50.82%

Hi,

I installed the Microsoft Office 2010 Technical Preview, and liked the software a lot. I wanted to install the newly released Microsoft Office 2010 and while uninstalling the technical preview, the computer froze so I had to turn it off. It seemed like it was uninstalled, but when I tried to then install the full version, it refused to let me because it detected that the technical preview was still installed.

I've been trying to figure this out by googling it, but nothing's falling through.

Please help!
T

A:Cannot uninstall Microsoft Office Tech Preview??

Hi did you try system restore to a point before the uninstall

2 more replies
Answer Match 50.82%

WHAT a MONTH! My "new", now 4 mo old system had a bad memory stick which caused sooo many problems that I have had to reformat hard drive, reinstall W2KPro, and start all over! Have been on the line with MS tech support almost constantly for the last 22 days. Bummer! BUT... hopefully this system will operate correctly now...
I use a free auction build/submit software called AuctionSubmit for posting eBay auctions. The eBay "categories" need to be updated or it will not post the built auctions. When I try to update I get a ( run-time error 3315: Field categories can't be a zero-length string ) pop-up box. This program did work on the machine before the reinstall just fine. The other thing that has changed is installing Norton Internet Security software. Is there a possible conflict between the two programs? I really need to get back to work but can't without the Auction Submit. Help!!!
Thanks,
Jan
 

A:Need help after Microsoft Tech Support! Run-time error! @#?&!!!

A lot of AntiVirus, Firewall and other similar software can cause headaches through conflicts etc. The best plan is to shut down such software before installing anything else. Try uninstalling your ebay program, shut down norton, reinstall ebay and then turn norton back on (allow for restarts etc), this may solve your problem. Good luck.

The other possible causes could be that you are running different versions following your reinstall of Windows; ensure all your software's upto date if you can, this tends to result in smoother systems altogether.

Hope this helps.
 

1 more replies
Answer Match 50.82%

I am a free lance computer tech working for a company who has 4 computers all networked together. I had serviced all their computers in February of 2016 and installed AVG Virus protection and 2 Spyware programs on all 4 computers and got rid of anything
they found.

Plus I instructed them to run Malwarebytes & Super Anti-spyware weekly, and get rid of whatever they find and they have.

Then 2 weeks ago, out of the blue, 1 of the computers started getting a "User Account Control Pop-up Box" asking for a password.

It is not happening to any of their other computers, just this one.
This computer has Windows 8.1 installed on it. They tried every password they had and none work, then they called me Friday 7-1-16.


This is what I have tried, logging in as the Admin.
I tried not putting in a password and that also fails.
I can not access the User Control Settings.
Some parts of the computer works just fine, like logging into windows, opening a browser, accessing their webpage, receiving orders, printing orders, BUT you can not update any programs nor can you uninstall any programs, because you get that darn "User
Account Control Pop-up Box asking for a password!"
(Example you can't update AVG Virus Protection, Malwarebytes, Super Anti-spyware, Adobe Reader, Java, Adobe Flash Player because you get that darn "User Account Control Pop-up Box asking for a password!")

I can access the Control Panel and I can go into Account Set... Read more

More replies
Answer Match 50.82%

The title pretty much says it all. What I have been seeing for some time now is a lot of my clients that click on ads in the right hand advertising panel of the facebook page have ended up with malware on their systems and big warnings on the screen to call a toll free number to fix their system and when they do are told it is Microsoft tech support which it is not and they want access to your system. If you give it to them you are then really in a jackpot of a problem. So just a warning, I tell my clients that it is a good rule of thumb NOT to click on anything in the right pane of their page as you have no clue which ones will cause this issue. Of late mostly the ones about stars dying or having other problems seem to be the most likely ones but I have seen it in others as well. One would think that facebook would do something about these type of things but sadly they are about the almighty dollar and don't seem to care. So every one please watch what you click on facebook. Especially if it seems to good to be true because if so it usually is.

A:The Facebook Microsoft Tech Support Scam.

Unsolicited phone calls, browser pop-ups and emails (aka Tech Support Scamming) from "so-called Support Techs" advising "your computer is infected with malware", “All Your Files Are Encrypted" and other fake "alert messages" has become an increasing common and prolific scam tactic over the past several years. The scams may involve web pages with screenshots of fake anti-virus software displaying warnings of bogus malware infections, fake ransomware and fake BSOD which include a tech support phone number to call in order to fix the problem. More nefarious scammers will talk their victims into allowing them remote control access of the computer so they can install a Remote Access Trojan in order to steal passwords and other sensitive personal information which could then be used to access bank accounts or steal a person's identity.Microsoft does not make unsolicited phone calls, display pop-up alerts in your browser to call a support number or send unsolicited email messages to request personal or financial information or to fix your computer.If you have not done so already, you may want to read Beware of Phony Emails & Tech Support Scams.

1 more replies
Answer Match 50.82%

Okay so this is a pretty long story. Anyways I needed C++ Redis 2015 for a program for school to work, It kept failing so I went through the trouble shoots, repairing, deleting, reinstalling, repairing all previous C++ redist versions, restarting computer etc etc Then I went to the next trouble shoot which was to update windows. It would not update even after running the update reset tool and cc cleaner and at this point I was fed up and contacted Microsoft.
After about three hours of the techie screwing around in my pc she says lets try updating to win10. I say fine as long as I can downgrade back to win7. It upgrades, windows updates are working but god win 8/10 on a non touch screen sucks. So I almost immediately switch back to win7 after confirming that windows updates are working and C++ redist 2015 would download without fail. But apparently the techie deleted my catroot folders at some point into her troubleshooting, I stopped paying attention after like 2 hours. This of course corrupted my bios. Which gave me the amazing 0000000X6 Process1_FAILURE_INITIATE BSOD
At this point I had been up like 20 hours and stopped using my brain, she recommends I get into bios and switch the boot options to my Disc Drive and reinstall windows which I knew I wasn't going to do because I have like 100 hours of school work including my dissertation and thesis and 80% of my group project on it and am not willing to lose it. And here lies the problem, after my frustration and exh... Read more

A:Cannot access bios after microsoft tech support

Maybe these tutorials can help:
Fast Startup - Turn On or Off in Windows 10 - Windows 10 Forums
Fast Boot - Enable in UEFI Firmware Settings for Windows 8 and 10 - Windows 10 Forums

If you can't start Windows or get into BIOS, you could try resetting BIOS by removing and reinstalling the CMOS battery,
Some motherboards also have a hardware reset option, so you don't have to remove/reinstall the CMOS battery.

Your specs show you have a Desktop PC, getting the PC manufacturer or motherboard manuals might help you with BIOS and CMOS reset instructions.

1 more replies
Answer Match 50.82%

I appear to have multiple viruses wreaking havoc. At first things were just v. slow, then there were a few screen wipeouts and my wireless connection just kept shutting down. Now, I am only able to boot my computer to XP using the Last Good Configuration, must go to the internet directly thru the Verizon DSL box (Linksys Wireless G not working at all), and must disable patch-resistant Sasser popups using Run/shutdown -a before I can get on the web. And once I am on the net, I can browse generally and check yahoo email but can't log in to other password sites (for example, MyEbay) or complete online transactions (for example, purchasing anti spyware software online), and I battle constant pop up ads.

I was on the phone with microsoft yesterday about one virus I identified - Sasser. They had me download two files to fix it - the Sasser Worm Removal Tool (KB841720) and I believe a patch (KB835732) but they didn't work. Tech Support gave up, said I was probably "infested" with other viruses that were preventing these tools from working. Can someone help me?

I've run samples of other anti trojan and spyware and virus hardware - some found nothing wrong with my machine (Trojan Hunter, Panda) - others found multiple issues. Spyware Doctor found 14 infections including Splotchbar, Altnet Software, Rapid Blaster and C-Dilla, among other lesser items and Xoft Spy found a worm and a trojan horse I believe not listed in Spyware Doctor - but I can't get tho... Read more

A:Help - infested? Sasser plus others. Microsoft tech support gives up.

12 more replies
Answer Match 50.4%

Hey everyone, I recently downloaded Spybotsd to all my computers and now they're acting hinky. I'm finding hidden users and hosts that I'm not sure should be there. I'm running 64bit vista on this computer (not sure if this one is infected), windows7 on some others and one has XP. I really appreciate the time you guys put into helping everyone and want to give thanks in advance. Here is th dds log:
DDS (Ver_10-12-12.02) - NTFS_AMD64
Run by computerOne at 14:02:54.04 on Fri 03/04/2011
Internet Explorer: 8.0.6001.19019
Microsoft? Windows Vista? Home Premium 6.0.6002.2.1252.1.1033.18.8189.6311 [GMT -5:00]

AV: Norton AntiVirus *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Norton AntiVirus *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k L... Read more

A:Fake Spybotsd giving remote access to comuter?

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.Please take note:If you have since resolved the original problem you were having, we would appreciate you letting us know. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
If you are unsure about any of these characteristics just post what you can and we will guide you.Please tell us if you have your original Windows CD/DVD available.If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply'... Read more

1 more replies
Answer Match 50.4%

Hi there,

I had bought upgrade licence for windows 8 Pro and used it in a machine while i was in USA. Then i moved to Australia and the Machine in USA was wiped and donated. I moved to Australia, bought another machine with windows 7 and tried to upgrade using purchased windows 8 licence (same licence keys that was used in USA) but windows was not activating.
So, i got in online chat with windows tech support guy who checked and verified purchased licence as valid. He said, he is located in Philippines and asked for remote access to my desktop. He played about 1 hr, he was trying to use the key that i purchased and was not able.
Finally he said, now your windows is activated and nothing to worry about.
I thought okay, good then.
Recently, i tried to upgrade to windows 8.1 and continually it says, i am not eligible. then i checked to windows activation and it appears that the Microsoft tech guys used some other keys than my own purchased key to activate and which says will expire in 30 days from today(expires on 09/11/2015). But apparently that expiry date keeps on changing as time passes by. Say, last moth i checked, it was saying will expire on 08/**/2015 (where ** is the date 30 days from checked date) and yesterday was saying will expire on 09/10/2015).
I dont know what kind of licence key he used.
When i checked the Windows activation, it says

Windows is activated.
Your windows licence will expire soon.
Current Edition
Windows 8 Pro with Media Center
Curr... Read more

A:windows 8 activation issues, microsoft tech seems screwd it up.

The original windows licence is most likely still active on the original laptop you donated.
Wiping the hard drive and removing all data including the Operating System does not remove the activation key which is tied to the BIOS once installed.
Basically anyone can install Windows 8 on that laptop and it will automatically activate.

6 more replies
Answer Match 50.4%

Hello,
I am trying to install the Window 10 Tech preview on my Windows 7 pc running Microsoft Virtual PC. I get the following message,

Your PC needs to restart.
Please hold down the power button.
Parameters:

0x00000110
0xFFD01D30
0x00000000
0xC00000D

Any help would be greatly appreciated,

Thanks,
Arnie
 

A:Trying to install Windows 10 Tech preview in Microsoft Virtual PC

8 more replies
Answer Match 50.4%

Hi, my first post here. Warning: I am 64 years old, have a basic knowledge of computers, but leave the "problems" to the experts.

So here's why I'm posting. I set Windows Essential to do a full scan last night. When my husband got up this morning, it was frozen. I checked the log and found this:

application hang occurred 5x
windows update client occurred 2x
Disk 4x
service control manager 3x
kernel-event tracking 2x
service control manager

"The program IEXPLORE.EXE version 11.0.9600.17937 stopped interacting with Windows and was closed."

Performance Information Rating scores:
processor 7.2
memory (RAM) 7.2
graphics 4.7
gaming graphics 5.6
primary hard disk 387 GB free (466 GB total)

My computer is set to run Essentials every week, but lately the icon has been orange, indicating a problem. So I thought I'd run it last night and this is what occurred.

It may be helpful to know that my husband's log-in for work requires Internet Explorer. I prefer Google Chrome. Could that be part of the issue? It's been that way for years....

I probably have given you more information than you need, but I am close to illiterate when it comes to fixing my computer, so please excuse my low level of knowledge here. Thank you to anyone who helps me (using very low-tech instructions).

A:Microsoft Windows Essential froze up - I am not tech savy

it could bad files run a hard drive scan...it will take about 5 hrs it will fix a lot..you need to do chkdsk c:/r this we fix them https://www.youtube.com/watch?v=UnGACUIysVk https://www.youtube.com/watch?v=UnGACUIysVk if it to much we will do a another way..https://www.google.com/?gws_rd=ssl#tbm=vid&q=how+to+scan+for+bad+sectors you can do this !!!!

9 more replies
Answer Match 50.4%

Hey Guys

Tough one that Microsoft technical support cant figure out.
I install Vista Ultimate. It goes through the normal set up process, reboots a few times then the screen "running Windows for the First Time" comes up. Once this is up for a few mins a Vista screen comes up and says completing installation. After about 3 mins of that a screen flashes for about 2 secs that says "Windows Vista cannot complete installation" and immediately powers off the system. Restarting the machine just makes it do a roll back to the XP Pro that I was running before. I get the same crash regardless of if its 32bit or 64 bit. Crashes in the exact same place and is repeatable. I have run the VIsta Advisor and it says I am good to go.

Running:

120G HDD

Pentium 4 2.8GHZ

Radeon x1900

1G ram

Vista Upgrade Advisor says my system should run fine. Albiet it says I should run Home Basic.

Is it possible that my processor itself may be the cause? This is not a HT processor.

Specs are:

Intel Pentium 4---Processor 511+

LGA775

2.8 GHZ

533 MHZ FSB

1MB L2 Cache

Intel EM64T

Thanks.
 

A:Vista Installation Mystery..Microsoft Tech cant figure it out.

Good job of noting your hardware.

Do you have a spare HDD? If so, trying installing Vista Ultimate to the spare HDD. If the installation fails, your copy of Vista [ presumably DVD ] is damaged. OK. Maybe not, but I doubt that the problem is your processor, or any other hardware. I installed Vista Ultimate, RFC 1 on a PC with a Sempron processor, much slower & with less ram / cache than your PC.

Have you checked Intel's site?

According to Microsoft, AERO will run on a 1 GHZ cpu.
http://www.microsoft.com/windows/products/windowsvista/editions/systemrequirements.mspx

Are you overclocking your CPU or GPU [ if your video card has a GPU ]?

In defense of the Microsoft tech, even with all of the Beta testing, not all computer configurations could be tested. During the 1st 1 to 2 months after Microsoft launches a product, the call centers are besieged by users. The call center circulates a "hot sheet" with commonly encountered issues & proposed fixes. Once a fix has been deemed reliable, the fix enters the online knowledge base [ KB ] library.

Best of success.

Sincerely,
RF123
 

3 more replies
Answer Match 50.4%

I was just on with a Microsoft tech. He took over my pc for over 2hrs & couldn't fix my App Store Error Code 0X8009604. He had me open a new Microsoft acct & same prob. I ran the troubleshooter & 2 things were checked green that they were fixed. Something about a Windows Update Error. I can't view it now because I'm on this "new" acct. He finally disconnected after the last restart he did so now I have no idea what to do. I guess I could live without using the store but my Dell desktop is only 4 months old & not only can I not use the app store but I'm also getting gray screens on both Firefox & Explorer on random websites. I take a lot of surveys & have for many years & never had a problem until the last month or so. One site says Page Not Found for EVERY link they send me, another says NoEndUser or something like that in the tab label, & other random sites say GIF IMAGE 1 X 1 Pixel in the tab label. I've searched for weeks on many different sites & I can't find anything that can help me. Also, when I'm on this new acct, my system is running very slow & when it asks for my password to allow something it tells me it's wrong which I know it's not. So I'd appreciate any help from anyone! Again, I have Dell desktop running Win 8.1. Just tried accessing the survey site that was a gray screen lately, it works on this new microsoft acct. Can anyone please tell me what to look for to... Read more

A:2hrs & Microsoft tech couldn't fix App Store Error

16 more replies
Answer Match 50.4%

Source: Microsoft releases Office 2016 -- upgrade today!

If you?ve been waiting for the latest version of Microsoft Office, we have some good news for you. The newest addition to Office 365, Microsoft?s cloud-based subscription service, is available to download now.

Office 2016 delivers new versions of the desktop apps for Windows, including Word, Excel, PowerPoint, Outlook, OneNote, Project, Visio and Access. Office 365 subscribers can choose to download the new Office 2016 apps as part of their subscription (automatic updates will begin rolling out to consumers and small-businesses next month). The new suite is also available to buy for a one-off fee from today.
Highlights of the new release include:
Co-authoring in Word, PowerPoint and OneNote, including the all new real-time typing experience in Word
Intelligent features like Tell Me which allow you to use intuitive language to find the commands you need and Smart Lookup which brings insights from the web right into your documents
Office 365 Groups are now an integrated part of the Outlook 2016 client app and available on your favorite mobile device through the Outlook Groups app, delivering a consistent team experience across the suite.
GigJam, a new way for teams to accomplish tasks and transform business processes by breaking down the barriers between devices, apps and people, is available in private preview today, and will become part of Office 365 in 2016
Significant new updates to OneDrive for Business comin... Read more

A:Microsoft releases Office 2016 -upgrade today!

Thanks for sharing. Please remember not everything is meant to posted in the News section. New version, software releases and updates can be posted in the All Software Discussions (non-security), but remember to Homepage, Changelog and Download/Mirror links.

Extra:

FAQ for Mac - Your top 10 questions about Office 2016 for Mac answered - Office Blogs

FAQ for Android - Your top questions about Office for Android phone answered - Office Blogs
 

9 more replies
Answer Match 50.4%

Has  anyone installed the Microsoft keyboard and mouse drivers today?  I have Win 8.1  after starting up the computer today, I see I have one new security update, and two optional.  Neither the keyboard, or either of my two mice are Microsoft.  I am not sure whether to install them or not.  The security update keeps saying preparing to install, but it is taking much much longer than normal to install.  I decided to do it first, then ask about these other two.  I don't want to mess up my keyboard and mouse with an update not meant for their brand.  Thoughts please?

A:Microsoft keyboard and mouse driver updates today

The drivers are not specifically for a Microsoft mouse, it's aimed at a HID - compliant mouse.
 
A mouse is a plug and play device, unless it is a specialized gaming mouse you shouldn't need anything other than the native Windows driver in the operating system.  That is what the updated drivers for the mouse are.

3 more replies
Answer Match 50.4%

Free or paid, what's the best way to keep Microsoft's grubby paws off my data (and my family's data)?

Tools?

Registry edits?

Etc?

Thanks,

x509
 

A:What's the best tool TODAY to block Microsoft snooping in Windows 10?

Here is a simple tool to keep Windows 10 from being too much of a pain in the ass.

O&O Shutup 10
O&O ShutUp10: download free antispy tool for Windows 10

I also use Classic Shell.

Classic Shell - Start menu and other Windows enhancements

I am old school and have no use for the new and improved Windows 10 menu. I am sure some people think it is wonderful but it is not for me.

After a few tweaks, W10 isn't that bad. Most people that complain about W10 do not take the time to customize it or neuter it might be a better term.
 

20 more replies
Answer Match 50.4%

Hello, I sure do need help. It started out as Performance and Security warning. I lost the desktop and had to go through start my computer the drive c to find IE. I do have the desktop IE shortcut working right now. It has taken away my ability to open programs from the start menu. It has shut off my firewall. I installed emisoft and scanned. Also did an avast scan.
Sure hope someone can help me. My logs that you need are below. Thanks in advance
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:15:32 AM, on 7/7/2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 SP3 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\Emsisoft Anti-Malware\a2service.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\ALCWZRD.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2guard.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\Common Files\Apple\Mobile Devi... Read more

More replies
Answer Match 50.4%

I'm this XP-SP3 PC with some kind of infection that brings up a "User Account Control" popup any time I try to run any program, any browser, Task Manager, etc.
When I try to run anything the popup says "Windows Security Center block active process: csrcs.exe Process try direct access to memory process programName."
I have 2 options, Allow, which will close the program I'm trying to run or "Scan System", which will take me down the purchase path.
One way or another I'm unable to open browsers, rkill (in any form), anything outside of ComboFix won't open, ComboFix opens but it doesn't seem to get rid of it.
By the way, those UAC popups are active even in Safe mode with Networking.

I've tried ComboFix, RKill, Malwarebytes' Anti-Malware.
I've taking the hard drive out and connected it to another PC, where I ran MS-Security Essentials, Avira, AVG9 and they didn't get rid of this thing.

Any ideas? I'm ready to try anything.

Thanks much

A:Fake "User Account Control" in XP

Nobody out there has really experienced this one?
I'm ready to reinstall XP.

Thanks

2 more replies
Answer Match 49.98%

Hello there,

Please help, I have discovered that my Bonjour is corrupted and connected to a fake Apple remote server.
My anti-virus looks like it scans but it is all an illusion. Browser redirecting. Over all the computer isn't giving me that big of problems but I want the remote servers and keyloggers off.

Thanks!! Here are the requested logs.
DDS (Ver_10-10-21.02) - NTFSx86
Run by Lil Spracker at 2:37:23.34 on Sat 11/13/2010
Internet Explorer: 8.0.7600.16385 BrowserJavaVersion: 1.6.0_22
Microsoft Windows 7 Professional 6.1.7600.0.1252.1.1033.18.2359.1138 [GMT -5:00]

SP: Spybot - Search and Destroy *disabled* (Outdated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe
C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Apple\Mobile D... Read more

More replies
Answer Match 49.98%

Greetings;

Please bare with me. My problems began with receiving messages from AVG spotting a "Trojan horse Dropper.Small.6.L", a similar situation to this post a few days back. http://computercops.biz/postt67270.html This may be a new one, I find not much instance of it when researching. In that post, it was rightly advised that to get rid of this thing fully, one needed to turn off system restore, purging the points, start in safe mode, allowing AVG to find the last of the trojan within the restore area. I did this, except when I restarted I could never get past the boot up, we just kept going in a loop. Safe mode and all the rest of the startup selections made no difference. After researching some more, I decided to do a repair install of XP. I was stuck when I continued getting the message that install can't function in safe mode, indicating that the "reboot at startup" in configuration utility mode that I followed from previous noted article was tripping this install. I had to call MS Tech now. I told dude exactly was was going on, but instead of focusing on the safe mode thing, he did the Q307545 repair registry deal, eventually taking me into XP environment in safe mode, looking for a restore point. Surprised that there weren't any, (very frusterating as I clearly layed out at beginning that I shut down the restore, and therefore purged the points), he directs me to uncheck the reboot in safe mode in utility, so I can proceed with the r... Read more

A:Can you prove Microsoft Tech wrong by helping me? (rebootloop)possibleTrojan

8 more replies
Answer Match 49.98%

Greetings;

Please bare with me. My problems began with receiving messages from AVG spotting a "Trojan horse Dropper.Small.6.L", a similar situation to this post a few days back. http://computercops.biz/postt67270.html This may be a new one, I find not much instance of it when researching. In that post, it was rightly advised that to get rid of this thing fully, one needed to turn off system restore, purging the points, start in safe mode, allowing AVG to find the last of the trojan within the restore area. I did this, except when I restarted I could never get past the boot up, we just kept going in a loop. Safe mode and all the rest of the startup selections made no difference. After researching some more, I decided to do a repair install of XP. I was stuck when I continued getting the message that install can't function in safe mode, indicating that the "reboot at startup" in configuration utility mode that I followed from previous noted article was tripping this install. I had to call MS Tech now. I told dude exactly was was going on, but instead of focusing on the safe mode thing, he did the Q307545 repair registry deal, eventually taking me into XP environment in safe mode, looking for a restore point. Surprised that there weren't any, (very frusterating as I clearly layed out at beginning that I shut down the restore, and therefore purged the points), he directs me to uncheck the reboot in safe mode in utility, so I can proceed with the r... Read more

A:Can you prove Microsoft Tech wrong by helping me? (rebootloop)possibleTrojan

8 more replies
Answer Match 49.56%

So my father got another virus! I hope he has learned his lesson! He clicked one of those active X control things. I use Firefox, but my family uses IE and a fake system error pops up when IE is run as well when the Control Panel is open. I need to fix it tonight, if that is possible. The pop up says: SYSTEM ERROR. Your computer is infected with an unknown trojan. It is dangerous for your system (critical files can be lost)! Click OK to download the antispyware program to clean your system (recommended)

Any help is appreciated.

Logfile of HijackThis v1.99.1
Scan saved at 5:31:27 PM, on 1/8/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16574)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Microsoft Office\Office12\Groov... Read more

More replies
Answer Match 49.14%

I would like to install a Remote Control system so that I can cut out journeys to some of my club members to solve small problems on their computers and take control of their PC's from mine. As it is a comminity project we have no funds so it would need to be Open Source software. Don't want to go on a huge learning curve to achieve this. Am I asking the impossible or has anyone a suggestion please?
I did look at Tight VNC but that looks like taking a sledgehammer to crack a nut.

A:Remote Control

This should do the trick

TeamViewer - Free Remote Access and Remote Desktop Sharing over the Internet


Steve

9 more replies
Answer Match 49.14%

i have an advent t9102 pc with a medion tv card installed.it came with cyberlink power cinema installed and a remote control handset by x10.there are x10 drivers installed and it all works ok.i now have nero 7 installed yet when i uninstall power cinema the remote control does not work.any ideas as to how i can use remote control to work nero 7.ie the tv part.thanks in advance

More replies
Answer Match 49.14%

Redirected from this topic: http://www.bleepingcomputer.com/forums/t/220948/internet-browsers-crash-randomly-programs-dont-load-on-startup-computer-slowdown/I can't post a DDS log, because I can't get DDS to run on my compter (even with script blockers disabled and a couple of workarounds). However, I can get HJT to work, so here's my log:==============================Logfile of Trend Micro HijackThis v2.0.2Scan saved at 11:01:32, on 23/04/2009Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\System32\ibmpmsvc.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\LEXBCES.EXEC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\LEXPPS.EXEC:\Program Files\Bonjour\mDNSResponder.exeC:\Program Files\IBM\IBM Rapid Restore Ultra\rrpcsb.exeC:\Program Files\McAfee\SiteAdvisor\McSACore.exeC:\PROGRA~1\McAfee\MSC\mcmscsvc.exec:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exec:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exeC:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exeC:\Program Files\McAfee\MPF\MPFSrv.exeC:\WINDOWS\System32\QCONSVC.EXEC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\TpKmpSVC.exeC:\Program Files\Viewpoint\Common\ViewpointService.exeC:\WINDOWS\system32\tp4serv.exeC:\WINDOWS\system32\igfxtray.exeC:\WINDOWS\explorer.exeC:\WINDOWS\system32\wuauclt.exeC:\PR... Read more

A:Remote control?

Hello and welcome to Bleeping ComputerWe apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.If you have already posted a DDS log, please do so again, as your situation may have changed.Use the 'Add Reply' and add the new log to this thread.//If you cannot post a DDS log then a new HJT?Thanks and again sorry for the delay.We need to see some information about what is happening in your machine. Information on A/V control HERER,K

10 more replies
Answer Match 49.14%

I want to remote my computer from anywhere.

I saw some people using the Vista remote assistant and logging into their computer from explorer by typing their ip adress.

Or how to connect to my computer using remote assistant from vista?

I really tried trough help guide and stuff, but i cant get details enough..

Do anybody have the time to give me a step by step guide to set it up?

Best regards

'Egemen

More replies
Answer Match 49.14%

I ahve a strange one you you all. I have a friend that would like to have a remote control that he could turn on his computer from the other side of the room. Do any of you know of a peice of hardware that can do this. If so please let me know all you about it.

Thanks
CT

I told you it was strange.

 

A:Remote Control

Perhaps a wireless Network setup might work

Get a wireless NIC and a programable remote that he can set to the Ntwork frequency.

Then make sure "Wake On LAN" is enabled in the bios!

GOOD LUCK!

ST!
 

2 more replies
Answer Match 49.14%

Can anyone assist me with set up instructions for HP Remote control m#5070-2583 and IR receiver m#467496-ZH1 using windows vista home premium on hp pavilion m# d5200t desk top computer. I purchased the items from HP parts store but came without set up instructions. I followed my computer user guide instructions but was unable to get the device manager recognize the IR receiver after clicking on universal serial bus controller.

More replies
Answer Match 49.14%

i looking for a WMP remote control. I mean apple has its own remote like mac remote on Flickr - Photo Sharing! & Apple Remote - Wikipedia, the free encyclopedia. so i need a remote control for WMP for my xp & 7 from where i found this type of remote.

A:i looking for a WMP remote control

I received my remote control with USB IR receiver and my Hauppange TV card together.
I think you can find them on Ebay if you want to buy one but you will also need the IR receiver.

Here is one I found on Amazon.com
http://www.amazon.com/Windows-Certif.../dp/B000ST7QPA


Here is a link to a bunch more.
http://www.amazon.com/Windows-Contro...m/B00224ZDFY/2

1 more replies